gozi | 9287378a4d2d2d9d69a85f32a7d7e12277a09e3cd89da5b1c11c64f5e4aca079 | Triage

Sharing

General

Target

9287378a4d2d2d9d69a85f32a7d7e12277a09e3cd89da5b1c11c64f5e4aca079
Size

3.1MB
Sample

241117-spnqbsxkgj
MD5

e6b5587d3f2ab26a8f359108612704c1
SHA1

9e2f7654d79e3205f901d8693b6cb8d98e20740d
SHA256

9287378a4d2d2d9d69a85f32a7d7e12277a09e3cd89da5b1c11c64f5e4aca079
SHA512

c9470409c78eb4aeb76ef1ec7d0e29432d26df6d3a0f03731a50416f392c16aa26a726bdc4b418e0abab0b8640ce55a68485d1bed42a7b5539f2885ff992da24
SSDEEP

49152:NbjxRaWbjuRL2BnKsayCp8TuDCoAilUjWKGUoWdjmWz7kwC9bf+nt9mxYXo8ZBlc:JxgUjucBnGx4muiFKGwHvgbWTDo8f

Score

10^/10

gozi discovery isfb

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  9287378a4d2d2d9d69a85f32a7d7e12277a09e3cd89da5b1c11c64f5e4aca079
- Size
  
  3.1MB
- MD5
  
  e6b5587d3f2ab26a8f359108612704c1
- SHA1
  
  9e2f7654d79e3205f901d8693b6cb8d98e20740d
- SHA256
  
  9287378a4d2d2d9d69a85f32a7d7e12277a09e3cd89da5b1c11c64f5e4aca079
- SHA512
  
  c9470409c78eb4aeb76ef1ec7d0e29432d26df6d3a0f03731a50416f392c16aa26a726bdc4b418e0abab0b8640ce55a68485d1bed42a7b5539f2885ff992da24
- SSDEEP
  
  49152:NbjxRaWbjuRL2BnKsayCp8TuDCoAilUjWKGUoWdjmWz7kwC9bf+nt9mxYXo8ZBlc:JxgUjucBnGx4muiFKGwHvgbWTDo8f
Score

3^/10

discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1