gozi | 11e4bd5aca473a16fe75f8d1ba26bcde71b597e41f297fa56cc469791f967c61 | Triage

Sharing

General

Target

82da3864b3a2a349805a328ac9c26e1f_JaffaCakes118
Size

480KB
Sample

240530-dms5pscc5t
MD5

82da3864b3a2a349805a328ac9c26e1f
SHA1

273f2dc9407a645c115a2b0a67c1187985067a3c
SHA256

11e4bd5aca473a16fe75f8d1ba26bcde71b597e41f297fa56cc469791f967c61
SHA512

743c16b0d12a7cc2b2b18af706e8ff109b96e9f920fc23415a6fe63e090dd8ffe670100cd220bc062089a1585fdd225da4e45d5cd47654b49eb01a2192ac635b
SSDEEP

6144:mxzS/wxFAUVYaxbMXN8zf4e5b8YpCSfLVZoOHbE7UZ7CaBpCpsAL/:mx+/+nxM98CRKZZHbUQCHv

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  82da3864b3a2a349805a328ac9c26e1f_JaffaCakes118
- Size
  
  480KB
- MD5
  
  82da3864b3a2a349805a328ac9c26e1f
- SHA1
  
  273f2dc9407a645c115a2b0a67c1187985067a3c
- SHA256
  
  11e4bd5aca473a16fe75f8d1ba26bcde71b597e41f297fa56cc469791f967c61
- SHA512
  
  743c16b0d12a7cc2b2b18af706e8ff109b96e9f920fc23415a6fe63e090dd8ffe670100cd220bc062089a1585fdd225da4e45d5cd47654b49eb01a2192ac635b
- SSDEEP
  
  6144:mxzS/wxFAUVYaxbMXN8zf4e5b8YpCSfLVZoOHbE7UZ7CaBpCpsAL/:mx+/+nxM98CRKZZHbUQCHv
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2