Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Backdoor.Win32.exe

windows7-x64

1

Backdoor.Win32.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Backdoor.Win32.Berbew-d94ee7c246d69a4476f3770e0407fba97b2f27be1e3038fd6e4524f1437bec0fN

  • Size

    364KB

  • Sample

    240916-n2axsawcpg

  • MD5

    6488c5d6f1d83ea951ff66710f8baf60

  • SHA1

    5c841e63193018b99ccf4f59f72e6fe6a12d153f

  • SHA256

    d94ee7c246d69a4476f3770e0407fba97b2f27be1e3038fd6e4524f1437bec0f

  • SHA512

    bfc373fe4cda92cb0bc949c3592a71c791a2569882df675533fcce61fbb1905159f50375a25a7232ca29862aaa2ca403021792a98a372c73ecc3793ce1c89ee9

  • SSDEEP

    1536:AWzXF8CvrJ4PBhDP35u6hGUlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:Nh8k6DP346hpltOrWKDBr+yJb

Score
10/10
gozibankerdiscoveryisfbtrojan

Malware Config

Extracted

Family

gozi

Targets

    • Target

      Backdoor.Win32.Berbew-d94ee7c246d69a4476f3770e0407fba97b2f27be1e3038fd6e4524f1437bec0fN

    • Size

      364KB

    • MD5

      6488c5d6f1d83ea951ff66710f8baf60

    • SHA1

      5c841e63193018b99ccf4f59f72e6fe6a12d153f

    • SHA256

      d94ee7c246d69a4476f3770e0407fba97b2f27be1e3038fd6e4524f1437bec0f

    • SHA512

      bfc373fe4cda92cb0bc949c3592a71c791a2569882df675533fcce61fbb1905159f50375a25a7232ca29862aaa2ca403021792a98a372c73ecc3793ce1c89ee9

    • SSDEEP

      1536:AWzXF8CvrJ4PBhDP35u6hGUlProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:Nh8k6DP346hpltOrWKDBr+yJb

    Score
    10/10
    gozibankerdiscoveryisfbtrojan

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

      bankertrojangozi
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks