gozi | c9c13df22da89f940c7ee711b362c89e3024312f40525636346ab20033196b72 | Triage

Sharing

General

Target

778c1764dd5c36c1eb96c49a8f8441e6_JaffaCakes118
Size

380KB
Sample

240727-kfhhysxdkr
MD5

778c1764dd5c36c1eb96c49a8f8441e6
SHA1

1552ff552edc3b058384138261d7ded8e65be3d1
SHA256

c9c13df22da89f940c7ee711b362c89e3024312f40525636346ab20033196b72
SHA512

714d6697aeaebb26a5c5d2a51380bfd558315266c11ae4579ac69c0e6d9db6031755a88660bd9734e4e3a5b351d7d5135fb41d27c5560d5ef7a850a5d2429c76
SSDEEP

6144:6Pz8uOE/jrPO6jJmFDeIOf7Yp4jOa9Upk:gAdirPXdt

Score

10^/10

gozi discovery isfb

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  778c1764dd5c36c1eb96c49a8f8441e6_JaffaCakes118
- Size
  
  380KB
- MD5
  
  778c1764dd5c36c1eb96c49a8f8441e6
- SHA1
  
  1552ff552edc3b058384138261d7ded8e65be3d1
- SHA256
  
  c9c13df22da89f940c7ee711b362c89e3024312f40525636346ab20033196b72
- SHA512
  
  714d6697aeaebb26a5c5d2a51380bfd558315266c11ae4579ac69c0e6d9db6031755a88660bd9734e4e3a5b351d7d5135fb41d27c5560d5ef7a850a5d2429c76
- SSDEEP
  
  6144:6Pz8uOE/jrPO6jJmFDeIOf7Yp4jOa9Upk:gAdirPXdt
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2