gozi | 81b412fa40ab6e0f7cab548c636a165ae53659aadd3b508387db4bc1fb2435da | Triage

Sharing

General

Target

61f073b0f378ff6c537e041fdf4efe80_NeikiAnalytics
Size

364KB
Sample

240510-ebvd3aha8s
MD5

61f073b0f378ff6c537e041fdf4efe80
SHA1

d37f3ab4d5c2193bc445007a0e2e170e239b5ab4
SHA256

81b412fa40ab6e0f7cab548c636a165ae53659aadd3b508387db4bc1fb2435da
SHA512

fe119331454304f0494bc5adc7869880f88ed53937ca9cd2dbd0ed2a55e837021ac33d1542d8d40c022276ae7d4d4b752feaa8d53ef586f83f8ead270505412d
SSDEEP

1536:AXVwazXF8CvrJ4PBhDP35i6hOlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:AXFh8k6DP306hOltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  61f073b0f378ff6c537e041fdf4efe80_NeikiAnalytics
- Size
  
  364KB
- MD5
  
  61f073b0f378ff6c537e041fdf4efe80
- SHA1
  
  d37f3ab4d5c2193bc445007a0e2e170e239b5ab4
- SHA256
  
  81b412fa40ab6e0f7cab548c636a165ae53659aadd3b508387db4bc1fb2435da
- SHA512
  
  fe119331454304f0494bc5adc7869880f88ed53937ca9cd2dbd0ed2a55e837021ac33d1542d8d40c022276ae7d4d4b752feaa8d53ef586f83f8ead270505412d
- SSDEEP
  
  1536:AXVwazXF8CvrJ4PBhDP35i6hOlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:AXFh8k6DP306hOltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan