General

  • Target

    e3f94f0a231d69c0b5c79382038c0c72e740d6fda749815013f216c34052cf0c

  • Size

    583KB

  • Sample

    241006-jsa4zazdng

  • MD5

    171f1bd289ad32392c4520f5f17090f2

  • SHA1

    8807493ac0442d7b513e455465f6936663263fd1

  • SHA256

    e3f94f0a231d69c0b5c79382038c0c72e740d6fda749815013f216c34052cf0c

  • SHA512

    e9f7fb350bee0342d7648a2645f36212f0b0feef0325e3884311dae74c42041203c650e2ba56252bef506d2ff74f1802107dacf0c97de9dbc85adaabfc91275f

  • SSDEEP

    12288:7wuqNwguZUtJJ6hnDYRseX76uTuoeXvN5Qc00cdJjBm7udRJ5cwPoS5:7wuqkajXRhrliZXvN5D09BmS

Malware Config

Extracted

Family

gozi

Targets

    • Target

      e3f94f0a231d69c0b5c79382038c0c72e740d6fda749815013f216c34052cf0c

    • Size

      583KB

    • MD5

      171f1bd289ad32392c4520f5f17090f2

    • SHA1

      8807493ac0442d7b513e455465f6936663263fd1

    • SHA256

      e3f94f0a231d69c0b5c79382038c0c72e740d6fda749815013f216c34052cf0c

    • SHA512

      e9f7fb350bee0342d7648a2645f36212f0b0feef0325e3884311dae74c42041203c650e2ba56252bef506d2ff74f1802107dacf0c97de9dbc85adaabfc91275f

    • SSDEEP

      12288:7wuqNwguZUtJJ6hnDYRseX76uTuoeXvN5Qc00cdJjBm7udRJ5cwPoS5:7wuqkajXRhrliZXvN5D09BmS

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

MITRE ATT&CK Enterprise v15

Tasks