Overview

overview

10

Static

static

7

KMSAuto Li...64.exe

windows7-x64

10

KMSAuto Li...64.exe

windows10-2004-x64

10

KMSAuto Li...to.exe

windows7-x64

1

KMSAuto Li...to.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7490e45b5891d065126ba9aac4bb8174_JaffaCakes118

  • Size

    3.3MB

  • Sample

    240526-gzxkfahe9w

  • MD5

    7490e45b5891d065126ba9aac4bb8174

  • SHA1

    7ac32fe59ed67d9560642d9ac3d493cff9d14597

  • SHA256

    59f02c2c87f02a687c1977b6afccfbf662ba6e9e0ab4b4b8522b42278967b490

  • SHA512

    3e50553197fa49b8997630ccb493db862c6943089f84fb5cbc41d582da408110e2ce1c2303597b0e1a03eafa41bd9dab766bf1a16f529b3ad47394221f87c0e5

  • SSDEEP

    98304:wfBDrIm6d2ky9IMw3YStwwTbYXiI33ruVS:wpDCDyKMwN6Cc33ruU

Score
10/10
goziaspackv2bankerisfbtrojanupx

Malware Config

Extracted

Family

gozi

Targets

    • Target

      KMSAuto Lite Portable v1.3.5.3/KMSAuto x64.exe

    • Size

      1.6MB

    • MD5

      91138712e5e691a39175f02f145681e6

    • SHA1

      43a00a96fa01e9d4b38b50694dc09ddc3e54939b

    • SHA256

      da87f54817fa427a78a3376e887013c8981e92e4394edaa210bc6557a6ca6930

    • SHA512

      fdb1b99c51ca5a4a3910c46a276d54833161e427d97a9f65b7ad3b4732b4f36fba90ff71f9895cf128f863c903f6ac15e82dd224277bf17ccc5003f2bd6d2ff3

    • SSDEEP

      49152:GG7X7Xfq0Xdqm66MzsNjGgnwuqL6DDf8T:9DjRdqm6LWKgne0s

    Score
    10/10
    gozibankerisfbtrojanupx

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

      bankertrojangozi

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      KMSAuto Lite Portable v1.3.5.3/KMSAuto.exe

    • Size

      1.7MB

    • MD5

      9129cf390af59e8883c2ad2b441f0fc8

    • SHA1

      316945b06058ffccc032fb456c67064f69e8ded5

    • SHA256

      839e6f62f594bb48882c8b86ba1c950a1e68d02adf729f78550cbb01483be0ea

    • SHA512

      5fd1b5fb96506122f3f9b7effdeb6dab9726d7df3c3b4fdb6cfb6d6dbcb61683e8d048eb943dac4c20a2baaef984e5618ec4c7f2f033d092269c6d09927756cc

    • SSDEEP

      24576:/kJw8EIRYk40u443yE4lpWc2eNZkC3196UKtZh1QpoP+l1OwQsv+pG+97IiGAWcs:T8EIH40Y394XWgZkCcZbQjQpDu

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks