gozi | 36d14824ec9972d04008bae9334463f351332d2634b5b5f3e9f96fb0153a825c | Triage

Sharing

General

Target

0443a26389d0d59c77ec5b4a8a641730N.exe
Size

364KB
Sample

240711-yrkdkstgqf
MD5

0443a26389d0d59c77ec5b4a8a641730
SHA1

4d31fdca748212378a37dd82ae8f0599f5d28d38
SHA256

36d14824ec9972d04008bae9334463f351332d2634b5b5f3e9f96fb0153a825c
SHA512

bdb498db99341c7fe74e8501b8daf9cbd42252a704217a38d2b6e87fab5df92ff912c8c89dd3a319a712a40438052a1a7a7eeb808cdbe266f527ea9afe0de2f7
SSDEEP

1536:+eyRxSzXF8CvrJ4PBhDP3506hBlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:+eWxSh8k6DP3a6hBltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  0443a26389d0d59c77ec5b4a8a641730N.exe
- Size
  
  364KB
- MD5
  
  0443a26389d0d59c77ec5b4a8a641730
- SHA1
  
  4d31fdca748212378a37dd82ae8f0599f5d28d38
- SHA256
  
  36d14824ec9972d04008bae9334463f351332d2634b5b5f3e9f96fb0153a825c
- SHA512
  
  bdb498db99341c7fe74e8501b8daf9cbd42252a704217a38d2b6e87fab5df92ff912c8c89dd3a319a712a40438052a1a7a7eeb808cdbe266f527ea9afe0de2f7
- SSDEEP
  
  1536:+eyRxSzXF8CvrJ4PBhDP3506hBlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:+eWxSh8k6DP3a6hBltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan