gozi | 9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502 | Triage

Submit
Reports

Overview

overview

Static

static

5

9d8ddfac51...2N.exe

windows7-x64

9d8ddfac51...2N.exe

windows10-2004-x64

Sharing

General

Target

9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502N
Size

393KB
Sample

241009-2rwy6azgqb
MD5

1d3cd5942c096f8d35e17f80da41ef60
SHA1

a36851dc46e061cb6063b0fe7b9111ef2ba968c1
SHA256

9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502
SHA512

85f7c2bbd72550c9424d7ee0df5199ecfac9fe47e5a64290b09e425936f22bf452f987767a48dd86617bf7ded8ac1174e716b323135a642a30ca5e8a6405d790
SSDEEP

6144:TrDJa7rspPBcndOjm+qzLzIke3cssoofBT+ArtkQ77QTveZAS16+Eb04PL38jfuZ:3DJaOBAj+qLD5lBVttIv+AUVEomL8KZP

Score

10^/10

gozi banker discovery isfb trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502N.exe

Resource

win7-20240903-en

gozi banker discovery isfb trojan upx

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502N.exe

Resource

win10v2004-20241007-en

gozi banker discovery isfb trojan upx

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502N
- Size
  
  393KB
- MD5
  
  1d3cd5942c096f8d35e17f80da41ef60
- SHA1
  
  a36851dc46e061cb6063b0fe7b9111ef2ba968c1
- SHA256
  
  9d8ddfac510186612e769321f66c104b72f54c514457c10537a94523e331b502
- SHA512
  
  85f7c2bbd72550c9424d7ee0df5199ecfac9fe47e5a64290b09e425936f22bf452f987767a48dd86617bf7ded8ac1174e716b323135a642a30ca5e8a6405d790
- SSDEEP
  
  6144:TrDJa7rspPBcndOjm+qzLzIke3cssoofBT+ArtkQ77QTveZAS16+Eb04PL38jfuZ:3DJaOBAj+qLD5lBVttIv+AUVEomL8KZP
Score

10^/10

gozi banker discovery isfb trojan upx
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gozibankerdiscoveryisfbtrojanupx

behavioral2

gozibankerdiscoveryisfbtrojanupx

© 2018-2025

Terms | Privacy