gozi | d2bd7ecfade73d3122d1bd5a1d4e1334eaf1316f470bbbd529ce30e283634396 | Triage

Sharing

General

Target

d1b7b6dfaea31d30bcd11c1868ad4600_NeikiAnalytics
Size

364KB
Sample

240510-nkngjsfa63
MD5

d1b7b6dfaea31d30bcd11c1868ad4600
SHA1

1e338b4dff5ad9a0e62a6f419bdc4a443a6168aa
SHA256

d2bd7ecfade73d3122d1bd5a1d4e1334eaf1316f470bbbd529ce30e283634396
SHA512

c70502c977e4ab58dce0466c9f42c62550b69ab045733706ae5ff627cec0846558fef8d17c6a0817ea1b3db730362e0c275f4d1e993b844caa7012ba76a749ab
SSDEEP

1536:uhzXF8CvrJ4PBhDP35n6hGlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:ih8k6DP3x6hGltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  d1b7b6dfaea31d30bcd11c1868ad4600_NeikiAnalytics
- Size
  
  364KB
- MD5
  
  d1b7b6dfaea31d30bcd11c1868ad4600
- SHA1
  
  1e338b4dff5ad9a0e62a6f419bdc4a443a6168aa
- SHA256
  
  d2bd7ecfade73d3122d1bd5a1d4e1334eaf1316f470bbbd529ce30e283634396
- SHA512
  
  c70502c977e4ab58dce0466c9f42c62550b69ab045733706ae5ff627cec0846558fef8d17c6a0817ea1b3db730362e0c275f4d1e993b844caa7012ba76a749ab
- SSDEEP
  
  1536:uhzXF8CvrJ4PBhDP35n6hGlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:ih8k6DP3x6hGltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan