gozi | d9bd9e8b091f780a96f56d84c4727b89a2e2413007f6337aed04a9970081db87 | Triage

Submit
Reports

Overview

overview

Static

static

7

95b3df6294...18.exe

windows7-x64

95b3df6294...18.exe

windows10-2004-x64

Sharing

General

Target

95b3df629486f52dc64c2c38ba49b9f6_JaffaCakes118
Size

733KB
Sample

240604-v5kdyseg32
MD5

95b3df629486f52dc64c2c38ba49b9f6
SHA1

e4ca6bf835d00975cc2b41fc45c7d7a473b7eb8c
SHA256

d9bd9e8b091f780a96f56d84c4727b89a2e2413007f6337aed04a9970081db87
SHA512

aafcfa574b6dc9844a7c50515d5a1d5d89ad710009438314c1cf2b6d920b63c95f632b626109f2c3e1d0ace34d578e271b6cea11f479a264e0c9353e8801c1c2
SSDEEP

12288:n6TNQkTwso08kB9o/MJmjKiqHIyKnFioFheYexAX7s6tWeRY45CLEJCenEPReTS/:n6yqa61Jm+HnKnQEjKAJtWf45kkCeEPT

Score

10^/10

gozi banker isfb trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

95b3df629486f52dc64c2c38ba49b9f6_JaffaCakes118.exe

Resource

win7-20231129-en

gozi banker isfb trojan upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

95b3df629486f52dc64c2c38ba49b9f6_JaffaCakes118.exe

Resource

win10v2004-20240226-en

gozi banker isfb trojan upx

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Attributes

build
217025

Targets

- Target
  
  95b3df629486f52dc64c2c38ba49b9f6_JaffaCakes118
- Size
  
  733KB
- MD5
  
  95b3df629486f52dc64c2c38ba49b9f6
- SHA1
  
  e4ca6bf835d00975cc2b41fc45c7d7a473b7eb8c
- SHA256
  
  d9bd9e8b091f780a96f56d84c4727b89a2e2413007f6337aed04a9970081db87
- SHA512
  
  aafcfa574b6dc9844a7c50515d5a1d5d89ad710009438314c1cf2b6d920b63c95f632b626109f2c3e1d0ace34d578e271b6cea11f479a264e0c9353e8801c1c2
- SSDEEP
  
  12288:n6TNQkTwso08kB9o/MJmjKiqHIyKnFioFheYexAX7s6tWeRY45CLEJCenEPReTS/:n6yqa61Jm+HnKnQEjKAJtWf45kkCeEPT
Score

10^/10

gozi banker isfb trojan upx
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojanupx

behavioral2

gozibankerisfbtrojanupx

© 2018-2024

Terms | Privacy