gozi | 6e37c39bade829d7c9578c69cc58fa41a8d66d08519e6b67519da69bb7a66b93 | Triage

Sharing

General

Target

9c207a7e2f920f01ce916cea472ca842_JaffaCakes118
Size

1.2MB
Sample

240610-18h8ystcmj
MD5

9c207a7e2f920f01ce916cea472ca842
SHA1

74ab56a3997606933795f6377c2f86df99d51810
SHA256

6e37c39bade829d7c9578c69cc58fa41a8d66d08519e6b67519da69bb7a66b93
SHA512

5632e0fede1f1afb8c7a67f3ce6b056ed87b91296920afa1825e7acf05a804c6222ef30b221fc08db6c8be1cc1a4d03d687ec399680858b2a3cda171cfdb78f6
SSDEEP

24576:yJykiQ9I9cEGX1MVxaKIePgBn/SOFWcatf3Bi4zoGKxp6/:yJQQ9Onr9ID/SEatfUZGmp6/

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  9c207a7e2f920f01ce916cea472ca842_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  9c207a7e2f920f01ce916cea472ca842
- SHA1
  
  74ab56a3997606933795f6377c2f86df99d51810
- SHA256
  
  6e37c39bade829d7c9578c69cc58fa41a8d66d08519e6b67519da69bb7a66b93
- SHA512
  
  5632e0fede1f1afb8c7a67f3ce6b056ed87b91296920afa1825e7acf05a804c6222ef30b221fc08db6c8be1cc1a4d03d687ec399680858b2a3cda171cfdb78f6
- SSDEEP
  
  24576:yJykiQ9I9cEGX1MVxaKIePgBn/SOFWcatf3Bi4zoGKxp6/:yJQQ9Onr9ID/SEatfUZGmp6/
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan