gozi | 260683d9555e79992a736b787a257da2d4decec054df2a2466dc9801822c59f6 | Triage

Sharing

General

Target

2b1bfca2ca101c1bcb7911dcee7494f6_JaffaCakes118
Size

116KB
Sample

240509-v8b7rahc54
MD5

2b1bfca2ca101c1bcb7911dcee7494f6
SHA1

4d784d397703beecd1ee9ba7785490086f86f858
SHA256

260683d9555e79992a736b787a257da2d4decec054df2a2466dc9801822c59f6
SHA512

0491f15d090141bf3066be421979c63910c809eca7b67ae31a653e9abed420173d2d4290609a45704f49f41a3b4aab5657c1a670780fa75916c3feea145afb04
SSDEEP

3072:Z9zhE1IAWkxt6GeKJR7DrZW9BzC3fmPCme:/zkykxt69BufV

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  2b1bfca2ca101c1bcb7911dcee7494f6_JaffaCakes118
- Size
  
  116KB
- MD5
  
  2b1bfca2ca101c1bcb7911dcee7494f6
- SHA1
  
  4d784d397703beecd1ee9ba7785490086f86f858
- SHA256
  
  260683d9555e79992a736b787a257da2d4decec054df2a2466dc9801822c59f6
- SHA512
  
  0491f15d090141bf3066be421979c63910c809eca7b67ae31a653e9abed420173d2d4290609a45704f49f41a3b4aab5657c1a670780fa75916c3feea145afb04
- SSDEEP
  
  3072:Z9zhE1IAWkxt6GeKJR7DrZW9BzC3fmPCme:/zkykxt69BufV
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan