Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b013b3649693cca60667997c761bdbf0N

  • Size

    364KB

  • Sample

    240908-fq7tdaybmp

  • MD5

    b013b3649693cca60667997c761bdbf0

  • SHA1

    0bdffe6be67b997563c2341a58082cb7a0d72cab

  • SHA256

    73d17a5f37103e91c09dff0c3de4a48850bd7bbf7f1cf833b934f9ac0505457a

  • SHA512

    c5f2f436312ece8cf56b4857ea792370925927369a5dda0ea5da982e260c4346de11b06ee3fedfd43acf07960f9340074665296b8aaf6d859ac019c07b5124c5

  • SSDEEP

    1536:zzXF8CvrJ4PBhDP35t6h/lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:zh8k6DP376h/ltOrWKDBr+yJb

Malware Config

Extracted

Family

gozi

Targets

    • Target

      b013b3649693cca60667997c761bdbf0N

    • Size

      364KB

    • MD5

      b013b3649693cca60667997c761bdbf0

    • SHA1

      0bdffe6be67b997563c2341a58082cb7a0d72cab

    • SHA256

      73d17a5f37103e91c09dff0c3de4a48850bd7bbf7f1cf833b934f9ac0505457a

    • SHA512

      c5f2f436312ece8cf56b4857ea792370925927369a5dda0ea5da982e260c4346de11b06ee3fedfd43acf07960f9340074665296b8aaf6d859ac019c07b5124c5

    • SSDEEP

      1536:zzXF8CvrJ4PBhDP35t6h/lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:zh8k6DP376h/ltOrWKDBr+yJb

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

MITRE ATT&CK Enterprise v15

Tasks