gozi | 43e95bad31a71639b0e33470183ff079d25c95ac022910c9430f375b8a2bc191 | Triage

Sharing

General

Target

121a5359f32e4d623b72a27fea0ee9d0_NEIKI
Size

364KB
Sample

240508-xnfqjscg36
MD5

121a5359f32e4d623b72a27fea0ee9d0
SHA1

c27d07cd0fb4c2b5aeb9ce61782253367bd92670
SHA256

43e95bad31a71639b0e33470183ff079d25c95ac022910c9430f375b8a2bc191
SHA512

d59509c204af2753c302aacdf79ef9f48583276529e797b76e3a976dbc644d66b801d93113e15ea87c0025eb700f67a4db05d86e5424bda038d5f69513ba57c9
SSDEEP

1536:EzzXF8CvrJ4PBhDP35w6hVlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:Qh8k6DP326hVltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  121a5359f32e4d623b72a27fea0ee9d0_NEIKI
- Size
  
  364KB
- MD5
  
  121a5359f32e4d623b72a27fea0ee9d0
- SHA1
  
  c27d07cd0fb4c2b5aeb9ce61782253367bd92670
- SHA256
  
  43e95bad31a71639b0e33470183ff079d25c95ac022910c9430f375b8a2bc191
- SHA512
  
  d59509c204af2753c302aacdf79ef9f48583276529e797b76e3a976dbc644d66b801d93113e15ea87c0025eb700f67a4db05d86e5424bda038d5f69513ba57c9
- SSDEEP
  
  1536:EzzXF8CvrJ4PBhDP35w6hVlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:Qh8k6DP326hVltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan