gozi | 6907d3bc37715cebb6ef38554fe9c9b86f4a6c0030b653e28eb93914583568e0 | Triage

Sharing

General

Target

a183d51fcce53092b3f1a89f180bdd01_JaffaCakes118
Size

329KB
Sample

240612-v3fyratalg
MD5

a183d51fcce53092b3f1a89f180bdd01
SHA1

9efb919e14d115ba1783f00be809cc3dc6da5310
SHA256

6907d3bc37715cebb6ef38554fe9c9b86f4a6c0030b653e28eb93914583568e0
SHA512

c99ebb5c849a13ad8a18837993a88974033a8b4652102363f43c44a97d0dd0db8e560199ae6871fff45eff97e7bb4c2da63218caee449b28291116c0399baa93
SSDEEP

6144:NGhcDQ6qhY/SqY0zJZcjozIYIf4inDs61lF/NHg2:NFE/mvY0tZcjozWPnA6f7A2

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  a183d51fcce53092b3f1a89f180bdd01_JaffaCakes118
- Size
  
  329KB
- MD5
  
  a183d51fcce53092b3f1a89f180bdd01
- SHA1
  
  9efb919e14d115ba1783f00be809cc3dc6da5310
- SHA256
  
  6907d3bc37715cebb6ef38554fe9c9b86f4a6c0030b653e28eb93914583568e0
- SHA512
  
  c99ebb5c849a13ad8a18837993a88974033a8b4652102363f43c44a97d0dd0db8e560199ae6871fff45eff97e7bb4c2da63218caee449b28291116c0399baa93
- SSDEEP
  
  6144:NGhcDQ6qhY/SqY0zJZcjozIYIf4inDs61lF/NHg2:NFE/mvY0tZcjozWPnA6f7A2
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan