gozi | 6936f3b7338e3504564e1f7f64d883774d92b44a9cb775855cd370f1e6fd2bbb | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...2e.exe

windows7-x64

7

JaffaCakes...2e.exe

windows10-2004-x64

7

Sharing

General

Target

JaffaCakes118_144d46d31aaaa265bbb9f4e39b8a192e
Size

15KB
Sample

250221-wj7ssswpfw
MD5

144d46d31aaaa265bbb9f4e39b8a192e
SHA1

bf0fe263d8b8d0720c788ab4436963d0abbe10db
SHA256

6936f3b7338e3504564e1f7f64d883774d92b44a9cb775855cd370f1e6fd2bbb
SHA512

5a7f608b56bc748d12cd9630a25cce27434c6b365e194a6e71c26d51e04c78942237dfe719ad835854683e6a1a8765b6a860c943fb3b4171743845b9f04fd120
SSDEEP

384:q06KR0Mk9XOU3+RqDYkWTMLYn2Kz/SdmIyx:q06f6C6oYbjn2wSy

Score

10^/10

gozi discovery isfb upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_144d46d31aaaa265bbb9f4e39b8a192e.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_144d46d31aaaa265bbb9f4e39b8a192e.exe

Resource

win10v2004-20250217-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  JaffaCakes118_144d46d31aaaa265bbb9f4e39b8a192e
- Size
  
  15KB
- MD5
  
  144d46d31aaaa265bbb9f4e39b8a192e
- SHA1
  
  bf0fe263d8b8d0720c788ab4436963d0abbe10db
- SHA256
  
  6936f3b7338e3504564e1f7f64d883774d92b44a9cb775855cd370f1e6fd2bbb
- SHA512
  
  5a7f608b56bc748d12cd9630a25cce27434c6b365e194a6e71c26d51e04c78942237dfe719ad835854683e6a1a8765b6a860c943fb3b4171743845b9f04fd120
- SSDEEP
  
  384:q06KR0Mk9XOU3+RqDYkWTMLYn2Kz/SdmIyx:q06f6C6oYbjn2wSy
Score

7^/10

discovery upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy