gozi | 91e5be3497cea67646bf14141bccec9f6fc9a0a69cf70a25f008f83c8df402ae | Triage

Sharing

General

Target

7d83b6b0896dc5353148b682c3a6ef09_JaffaCakes118
Size

167KB
Sample

240528-s8xscaag5z
MD5

7d83b6b0896dc5353148b682c3a6ef09
SHA1

abee26cbd3bbac71edf521f8e64c658114e8a030
SHA256

91e5be3497cea67646bf14141bccec9f6fc9a0a69cf70a25f008f83c8df402ae
SHA512

76f89ae3babc90d6943d7fe81033173855cd19a82d1021f7144058e1960b9157c849d41dd402314c1968a097b01685e2d76c30575f146aadbc4fffbdba7fe268
SSDEEP

1536:Sif64A8skOXwPALT4p/lYsSptm6hX7Q74MuVXW/BMWqMRAjfC51VF5G224qz:dE4YTA/lYsSphhXsEVXcWOb51VF5GE

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Attributes

build
217038

Targets

- Target
  
  7d83b6b0896dc5353148b682c3a6ef09_JaffaCakes118
- Size
  
  167KB
- MD5
  
  7d83b6b0896dc5353148b682c3a6ef09
- SHA1
  
  abee26cbd3bbac71edf521f8e64c658114e8a030
- SHA256
  
  91e5be3497cea67646bf14141bccec9f6fc9a0a69cf70a25f008f83c8df402ae
- SHA512
  
  76f89ae3babc90d6943d7fe81033173855cd19a82d1021f7144058e1960b9157c849d41dd402314c1968a097b01685e2d76c30575f146aadbc4fffbdba7fe268
- SSDEEP
  
  1536:Sif64A8skOXwPALT4p/lYsSptm6hX7Q74MuVXW/BMWqMRAjfC51VF5G224qz:dE4YTA/lYsSphhXsEVXcWOb51VF5GE
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan