Overview

overview

10

Static

static

3

7ef8ea85b7...bb.exe

windows7-x64

10

7ef8ea85b7...bb.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7ef8ea85b7c52c0b7c30254d9d3feee72ea98f194eddc94062573463806b05bb.exe

  • Size

    350KB

  • Sample

    240524-n73jzshe96

  • MD5

    6dd3faca023b325de42a24d67bb17b14

  • SHA1

    630e27d06e623a2d5a047e291f603d44e46fde3e

  • SHA256

    7ef8ea85b7c52c0b7c30254d9d3feee72ea98f194eddc94062573463806b05bb

  • SHA512

    97cb43cfbdf025f4ef9c0a666acf5fc2ff075354da8a6aa9105af16e17182c615e4d4267c9e8a5c0a835c4ca7b3a043ddbf01410f20bf45d3d913ca230651458

  • SSDEEP

    6144:RukiCIXQRFUPRLLHpsn4kj4JMWmaF0oc:R0vXqFMFHps4kkeuz

Score
10/10
gozibankerisfbtrojan

Malware Config

Extracted

Family

gozi

Attributes
  • build

    217039

Targets

    • Target

      7ef8ea85b7c52c0b7c30254d9d3feee72ea98f194eddc94062573463806b05bb.exe

    • Size

      350KB

    • MD5

      6dd3faca023b325de42a24d67bb17b14

    • SHA1

      630e27d06e623a2d5a047e291f603d44e46fde3e

    • SHA256

      7ef8ea85b7c52c0b7c30254d9d3feee72ea98f194eddc94062573463806b05bb

    • SHA512

      97cb43cfbdf025f4ef9c0a666acf5fc2ff075354da8a6aa9105af16e17182c615e4d4267c9e8a5c0a835c4ca7b3a043ddbf01410f20bf45d3d913ca230651458

    • SSDEEP

      6144:RukiCIXQRFUPRLLHpsn4kj4JMWmaF0oc:R0vXqFMFHps4kkeuz

    Score
    10/10
    gozibankerisfbtrojan

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

      bankertrojangozi
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks