gozi | 96e5cc4ff41025162aa3f2c855f28fe330944a04cf2a2c21671000c2bdea72b2 | Triage

Sharing

General

Target

6c26971af6986d9f9cde96820afdf010_JaffaCakes118
Size

4.0MB
Sample

240724-txps2aydjg
MD5

6c26971af6986d9f9cde96820afdf010
SHA1

647940c60c4bf0cbec874a58ce93a431b2f4491d
SHA256

96e5cc4ff41025162aa3f2c855f28fe330944a04cf2a2c21671000c2bdea72b2
SHA512

2d11f749e58a45a1ab1822d0e2269604f2086faa2687e1f5fc6e4a6a56581546becc0ef14330961a98378c4013f5e80459bc3cfabcc4959647c4ba357d0f9bbe
SSDEEP

49152:cVF13mw4WmqStI8F1VQLraG1ntc7PSLTUaWIESnqv7sNg:eF13mw4e8P+K26ETUUESqv7sNg

Score

10^/10

gozi discovery isfb

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  6c26971af6986d9f9cde96820afdf010_JaffaCakes118
- Size
  
  4.0MB
- MD5
  
  6c26971af6986d9f9cde96820afdf010
- SHA1
  
  647940c60c4bf0cbec874a58ce93a431b2f4491d
- SHA256
  
  96e5cc4ff41025162aa3f2c855f28fe330944a04cf2a2c21671000c2bdea72b2
- SHA512
  
  2d11f749e58a45a1ab1822d0e2269604f2086faa2687e1f5fc6e4a6a56581546becc0ef14330961a98378c4013f5e80459bc3cfabcc4959647c4ba357d0f9bbe
- SSDEEP
  
  49152:cVF13mw4WmqStI8F1VQLraG1ntc7PSLTUaWIESnqv7sNg:eF13mw4e8P+K26ETUUESqv7sNg
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2