gozi | 0afee760ec1546ab9e42ef64b10a8c2dc002ed521975a594236fdadffa8943e3 | Triage

Sharing

General

Target

cfdfcc3c74fbf77851db6fffaed54960_NEIKI
Size

364KB
Sample

240509-cz1jwadf6y
MD5

cfdfcc3c74fbf77851db6fffaed54960
SHA1

b66155680365dfdb89bb44afc80e509479587026
SHA256

0afee760ec1546ab9e42ef64b10a8c2dc002ed521975a594236fdadffa8943e3
SHA512

6c38cba59adcefb4b546a7b61670d855a756b00f4b08fd3a6c6a1231daf67f4c3a1c43a80829b6c3fc4ed9a0bddb0853478fb5665e67a36cf64c5c06299567f4
SSDEEP

1536:/izXF8CvrJ4PBhDP35p6hRlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:/ih8k6DP3T6hRltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  cfdfcc3c74fbf77851db6fffaed54960_NEIKI
- Size
  
  364KB
- MD5
  
  cfdfcc3c74fbf77851db6fffaed54960
- SHA1
  
  b66155680365dfdb89bb44afc80e509479587026
- SHA256
  
  0afee760ec1546ab9e42ef64b10a8c2dc002ed521975a594236fdadffa8943e3
- SHA512
  
  6c38cba59adcefb4b546a7b61670d855a756b00f4b08fd3a6c6a1231daf67f4c3a1c43a80829b6c3fc4ed9a0bddb0853478fb5665e67a36cf64c5c06299567f4
- SSDEEP
  
  1536:/izXF8CvrJ4PBhDP35p6hRlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:/ih8k6DP3T6hRltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan