gozi | 4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161 | Triage

Submit
Reports

Overview

overview

Static

static

4eae530665...61.exe

windows7-x64

1

4eae530665...61.exe

windows10-2004-x64

Sharing

General

Target

4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161
Size

364KB
Sample

240509-1a2yeafd3w
MD5

74afc29e95ab2c2ec33c6e4fa73c83c2
SHA1

23a3bdfb727c3192470152f101672e9935b6c875
SHA256

4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161
SHA512

b589b564e85c4f24af264c9e46153388d4eb0bd12b3dc7d451276f49c264dae270e0fff0636d6eb321a83dbb9f25122a3894320676286e530b078d2d6f4ca639
SSDEEP

1536:Ec9zXF8CvrJ4PBhDP35O6hsglProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:dh8k6DP3E6hRltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161.exe

Resource

win10v2004-20240426-en

gozi banker isfb trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161
- Size
  
  364KB
- MD5
  
  74afc29e95ab2c2ec33c6e4fa73c83c2
- SHA1
  
  23a3bdfb727c3192470152f101672e9935b6c875
- SHA256
  
  4eae530665e2a128b9b8d6915bd7867f29199efc6951e57113fe742bec740161
- SHA512
  
  b589b564e85c4f24af264c9e46153388d4eb0bd12b3dc7d451276f49c264dae270e0fff0636d6eb321a83dbb9f25122a3894320676286e530b078d2d6f4ca639
- SSDEEP
  
  1536:Ec9zXF8CvrJ4PBhDP35O6hsglProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:dh8k6DP3E6hRltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan

© 2018-2024

Terms | Privacy