gozi | 99370d6dbfa0fe731f7396e5e95b2adceeae1045b7b36779918c958d21793350 | Triage

Sharing

General

Target

8658cbf10b06ef273949ec06ba27e940_JaffaCakes118
Size

480KB
Sample

240531-j4z78sch69
MD5

8658cbf10b06ef273949ec06ba27e940
SHA1

5bef3610e5a641b0d4df529ac52b30876f421de0
SHA256

99370d6dbfa0fe731f7396e5e95b2adceeae1045b7b36779918c958d21793350
SHA512

3af32765c9daa97edd2cb445402a490b4989841804786a60cfa20e68f9d64ec182d04c2053bd032e17167742a8e9d5a935844b50f503f7477d136f723c71a319
SSDEEP

12288:H9tHaIXE5BZ+8mHPWEVOeQe7vaLbyAdiF7Kf:H9tHCTmH6eF7yPyRF7K

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  8658cbf10b06ef273949ec06ba27e940_JaffaCakes118
- Size
  
  480KB
- MD5
  
  8658cbf10b06ef273949ec06ba27e940
- SHA1
  
  5bef3610e5a641b0d4df529ac52b30876f421de0
- SHA256
  
  99370d6dbfa0fe731f7396e5e95b2adceeae1045b7b36779918c958d21793350
- SHA512
  
  3af32765c9daa97edd2cb445402a490b4989841804786a60cfa20e68f9d64ec182d04c2053bd032e17167742a8e9d5a935844b50f503f7477d136f723c71a319
- SSDEEP
  
  12288:H9tHaIXE5BZ+8mHPWEVOeQe7vaLbyAdiF7Kf:H9tHCTmH6eF7yPyRF7K
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2