gozi | b8cf0945694d2ed2d90a73475f0c81c0ffce06dbace9d6e12b2e132985e71d48 | Triage

Sharing

General

Target

4954ad5a743bc78e9311753829931a8e_JaffaCakes118
Size

561KB
Sample

240516-ee5zzabb84
MD5

4954ad5a743bc78e9311753829931a8e
SHA1

8c9a479bda9467457e66d185d6370c2010766c79
SHA256

b8cf0945694d2ed2d90a73475f0c81c0ffce06dbace9d6e12b2e132985e71d48
SHA512

abd061ed528306fe33ec3cb541c59c455ab549c4470f93426a8aa915cc95061079f3ef32d29a21ed0e2ae0ed9fedcf68a08407b7fb20cd262376de6d6589bbb4
SSDEEP

6144:+FgN1ejdwFKSZh2+tIRsB1Q/ZpvHX1wXyV9aiA6lVDVLBbl8BbVDrXGBkBlpCp2e:nYdwFK8YLHZhXYyWi3lrvMVfXGeBlp5

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  4954ad5a743bc78e9311753829931a8e_JaffaCakes118
- Size
  
  561KB
- MD5
  
  4954ad5a743bc78e9311753829931a8e
- SHA1
  
  8c9a479bda9467457e66d185d6370c2010766c79
- SHA256
  
  b8cf0945694d2ed2d90a73475f0c81c0ffce06dbace9d6e12b2e132985e71d48
- SHA512
  
  abd061ed528306fe33ec3cb541c59c455ab549c4470f93426a8aa915cc95061079f3ef32d29a21ed0e2ae0ed9fedcf68a08407b7fb20cd262376de6d6589bbb4
- SSDEEP
  
  6144:+FgN1ejdwFKSZh2+tIRsB1Q/ZpvHX1wXyV9aiA6lVDVLBbl8BbVDrXGBkBlpCp2e:nYdwFK8YLHZhXYyWi3lrvMVfXGeBlp5
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2