gozi

General

Target

0306ee717c581c62eedb21eb4c1b82a64b641d60d71453344419d4944e410c73
Size

2.8MB
Sample

241219-xx84fsyjhm
MD5

5cbc91e005da99324b10e23bae3b9427
SHA1

beac657232e55493546b8bff5d7636af4e1efc24
SHA256

0306ee717c581c62eedb21eb4c1b82a64b641d60d71453344419d4944e410c73
SHA512

7dd16a565d48b8e05450399b0063dc899bb64c2c119b3599cf5d5fabd86099f0bd4759271a35b7d52007f210de55760f92380bef97351ac95a3a33eb01c237de
SSDEEP

49152:zACqIwBXHuZStR6BohzEOZ/VEoyJGKQkQ0oTW:zACXeXHfH6WVEo4XQ0o

Score

10^/10

Malware Config

Extracted

Family

gozi

Attributes

build
217111

Extracted

Family

gozi

Botnet

3555

C2

settings-win.data.microsoft.com

v60yuuu1415.com

jlb81hdvernon.com

b99vxjju.com

Attributes

build
217111
dga_base_url
constitution.org/usdeclar.txt
dga_crc
0x4eb7d2ca
dga_season
10
dga_tlds
com

ru

org
exe_type
loader
server_id
12

rsa_pubkey.plain

serpent.plain

Targets

- Target
  
  0306ee717c581c62eedb21eb4c1b82a64b641d60d71453344419d4944e410c73
- Size
  
  2.8MB
- MD5
  
  5cbc91e005da99324b10e23bae3b9427
- SHA1
  
  beac657232e55493546b8bff5d7636af4e1efc24
- SHA256
  
  0306ee717c581c62eedb21eb4c1b82a64b641d60d71453344419d4944e410c73
- SHA512
  
  7dd16a565d48b8e05450399b0063dc899bb64c2c119b3599cf5d5fabd86099f0bd4759271a35b7d52007f210de55760f92380bef97351ac95a3a33eb01c237de
- SSDEEP
  
  49152:zACqIwBXHuZStR6BohzEOZ/VEoyJGKQkQ0oTW:zACXeXHfH6WVEo4XQ0o
Score

10^/10

gozi 3555 banker discovery isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
- Gozi family
  gozi
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1

T1112

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Targets

Gozi family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2