gozi | ed95b21258eb152a49e9f7479cc1294741c6b30b8f56db4a3189ce8eeb5e541b | Triage

Sharing

General

Target

584d7ff53dabf0a40cd81dc95baf3d49_JaffaCakes118
Size

596KB
Sample

240519-dvp31sfg4v
MD5

584d7ff53dabf0a40cd81dc95baf3d49
SHA1

196451adf69ce95d3e0b3142826a7e77b1b1c0de
SHA256

ed95b21258eb152a49e9f7479cc1294741c6b30b8f56db4a3189ce8eeb5e541b
SHA512

3ab5202bbec636fb1cc0121af23b5fa31ed5522becca0310e61234c9abf66bd77244dbe1145fd275968c952927272bf264a04f54c41c1428b9aefa042f1b73fb
SSDEEP

6144:134/Ny9xKHR/7ZLlBb8mIfZ+BwfwutuCOjyw6gFxSANoLRHJ/u8/hHTN+hiSu+AS:1o/40/zBbE46jtWFkANoZVFHj6PWQ

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  584d7ff53dabf0a40cd81dc95baf3d49_JaffaCakes118
- Size
  
  596KB
- MD5
  
  584d7ff53dabf0a40cd81dc95baf3d49
- SHA1
  
  196451adf69ce95d3e0b3142826a7e77b1b1c0de
- SHA256
  
  ed95b21258eb152a49e9f7479cc1294741c6b30b8f56db4a3189ce8eeb5e541b
- SHA512
  
  3ab5202bbec636fb1cc0121af23b5fa31ed5522becca0310e61234c9abf66bd77244dbe1145fd275968c952927272bf264a04f54c41c1428b9aefa042f1b73fb
- SSDEEP
  
  6144:134/Ny9xKHR/7ZLlBb8mIfZ+BwfwutuCOjyw6gFxSANoLRHJ/u8/hHTN+hiSu+AS:1o/40/zBbE46jtWFkANoZVFHj6PWQ
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan