gozi | c0b208465fe32b5e71e4dbfa53c7cb93e75baf8ff9115f5a682c919e65b44887 | Triage

Sharing

General

Target

5e61678fbbf80abb52d49d6a3b635707_JaffaCakes118
Size

19KB
Sample

241019-ymvnraxdrq
MD5

5e61678fbbf80abb52d49d6a3b635707
SHA1

d687a6397a3f0a0040834eddbef18a7634614f60
SHA256

c0b208465fe32b5e71e4dbfa53c7cb93e75baf8ff9115f5a682c919e65b44887
SHA512

593bd9a83da83433ad9949c14d1fd17437bbc81173d0ce8ff47e536bdbccbdf9f2d1e257fc5c96caa3807113a3c3b500712bbd4f24cc7f15648b7a8dfca86e4f
SSDEEP

384:+7iM5r6pLguSKaN2+qMv/E2VXC9AskSu+w7vaq2vk9z:SlNJ971vBDsXuVvAk

Score

10^/10

gozi discovery isfb

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  5e61678fbbf80abb52d49d6a3b635707_JaffaCakes118
- Size
  
  19KB
- MD5
  
  5e61678fbbf80abb52d49d6a3b635707
- SHA1
  
  d687a6397a3f0a0040834eddbef18a7634614f60
- SHA256
  
  c0b208465fe32b5e71e4dbfa53c7cb93e75baf8ff9115f5a682c919e65b44887
- SHA512
  
  593bd9a83da83433ad9949c14d1fd17437bbc81173d0ce8ff47e536bdbccbdf9f2d1e257fc5c96caa3807113a3c3b500712bbd4f24cc7f15648b7a8dfca86e4f
- SSDEEP
  
  384:+7iM5r6pLguSKaN2+qMv/E2VXC9AskSu+w7vaq2vk9z:SlNJ971vBDsXuVvAk
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2