General

  • Target

    210a567a53c5a01642e5f6063c187057_JaffaCakes118

  • Size

    179KB

  • Sample

    240507-tvha6sed2t

  • MD5

    210a567a53c5a01642e5f6063c187057

  • SHA1

    f9f756e698c3ef5b1c005c3f3e38a76c67e1d590

  • SHA256

    8fcfa4eac6ec8849bd349b7a6bb74a763e7c25548556c88d03361e05e89f4655

  • SHA512

    b1eb5379172a7aa01f9e0e407b8296802aeb150f003ef4b852b38517d65817d60317b52d4e26771be4d6dc11864fe7bd29de364011011ffcb42342d2be98da79

  • SSDEEP

    3072:YmJskjk7LR7aRgi603+W5Dt3ycjGD6RKQjNB94:YmJHk7LR7kD6s+IpGmRVjNB

Score
10/10

Malware Config

Extracted

Family

gozi

Attributes
  • build

    217030

Targets

    • Target

      210a567a53c5a01642e5f6063c187057_JaffaCakes118

    • Size

      179KB

    • MD5

      210a567a53c5a01642e5f6063c187057

    • SHA1

      f9f756e698c3ef5b1c005c3f3e38a76c67e1d590

    • SHA256

      8fcfa4eac6ec8849bd349b7a6bb74a763e7c25548556c88d03361e05e89f4655

    • SHA512

      b1eb5379172a7aa01f9e0e407b8296802aeb150f003ef4b852b38517d65817d60317b52d4e26771be4d6dc11864fe7bd29de364011011ffcb42342d2be98da79

    • SSDEEP

      3072:YmJskjk7LR7aRgi603+W5Dt3ycjGD6RKQjNB94:YmJHk7LR7kD6s+IpGmRVjNB

    Score
    10/10
    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

MITRE ATT&CK Matrix

Tasks