gozi | 4fa56fd1e4a3eaf6dc1acd714c773a8d35f3d72cdd19e07e1e93f00c193ae152 | Triage

Sharing

General

Target

8ee83b95d6b45388e59eb83321772ada_JaffaCakes118
Size

576KB
Sample

240602-wdvw2sag76
MD5

8ee83b95d6b45388e59eb83321772ada
SHA1

4e14138470060bad316e8a44ab2e0afc1002bb12
SHA256

4fa56fd1e4a3eaf6dc1acd714c773a8d35f3d72cdd19e07e1e93f00c193ae152
SHA512

be941739fb2448cfd156f6943588d1b10da9b58929cc5693e022a0ca94a1b9c806e284aef38d84413f64a5b722e34c2ce1cf1cc43af938497c5d955ded03aee0
SSDEEP

12288:lEYWpj88dp+GaCSCyH/sylPHcpIsl8uiJ5uj:lERpj8GaCKUyhHcpIkDN

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  8ee83b95d6b45388e59eb83321772ada_JaffaCakes118
- Size
  
  576KB
- MD5
  
  8ee83b95d6b45388e59eb83321772ada
- SHA1
  
  4e14138470060bad316e8a44ab2e0afc1002bb12
- SHA256
  
  4fa56fd1e4a3eaf6dc1acd714c773a8d35f3d72cdd19e07e1e93f00c193ae152
- SHA512
  
  be941739fb2448cfd156f6943588d1b10da9b58929cc5693e022a0ca94a1b9c806e284aef38d84413f64a5b722e34c2ce1cf1cc43af938497c5d955ded03aee0
- SSDEEP
  
  12288:lEYWpj88dp+GaCSCyH/sylPHcpIsl8uiJ5uj:lERpj8GaCKUyhHcpIkDN
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2