gozi | 41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3 | Triage

Submit
Reports

Overview

overview

Static

static

3

41f5338ab7...e3.exe

windows7-x64

41f5338ab7...e3.exe

windows10-2004-x64

Sharing

General

Target

41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3.exe
Size

9.4MB
Sample

250303-qdel6symy2
MD5

e0b8b9c15f6c0b1388373e3e91942d8d
SHA1

7bcacdbee55c3eea556d2aa79f04377344a54e47
SHA256

41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3
SHA512

f1bd73c5f225243ac914054e6ac5ea01c3e9fbe1589ce1d93084c40e0e11c0e35f93c46dec8d270ac44520bac19fd008bd752446427433549bb604c163614e08
SSDEEP

98304:udv7AIFM+IJkXHJKZno3XzJ9ktJUs71Saxfz7w3YV:gEIFM+IGXHo+TJ9EBz7w3YV

Score

10^/10

gozi banker isfb trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3.exe

Resource

win7-20241023-en

gozi banker isfb trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3.exe

Resource

win10v2004-20250217-en

gozi banker isfb trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3.exe
- Size
  
  9.4MB
- MD5
  
  e0b8b9c15f6c0b1388373e3e91942d8d
- SHA1
  
  7bcacdbee55c3eea556d2aa79f04377344a54e47
- SHA256
  
  41f5338ab7665fd97eee000f1e121c7638913b5f0686e43121cc2c28e6b0ade3
- SHA512
  
  f1bd73c5f225243ac914054e6ac5ea01c3e9fbe1589ce1d93084c40e0e11c0e35f93c46dec8d270ac44520bac19fd008bd752446427433549bb604c163614e08
- SSDEEP
  
  98304:udv7AIFM+IJkXHJKZno3XzJ9ktJUs71Saxfz7w3YV:gEIFM+IGXHo+TJ9EBz7w3YV
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
- Gozi family
  gozi
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojan

behavioral2

gozibankerisfbtrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.