gozi | 2f54807cceeb81f637cb647eeaaa37514a90c61b5e5d7c01a76e6c849cdb6444 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...dd.exe

windows7-x64

7

JaffaCakes...dd.exe

windows10-2004-x64

7

Sharing

General

Target

JaffaCakes118_672152ad8c189380349edef856289cdd
Size

13KB
Sample

250311-y6djkstmx9
MD5

672152ad8c189380349edef856289cdd
SHA1

34ed78c3decf5cec41695fb019bb7d971c304258
SHA256

2f54807cceeb81f637cb647eeaaa37514a90c61b5e5d7c01a76e6c849cdb6444
SHA512

09eee3d4a4531d5da2522a71882212b36fd91c0f343e0597ce0f8b418b376e50aa3a5410ac8adeeaaec1e5cdc8d1875757e3dfd5de95dc673982ef291e71bc03
SSDEEP

384:50DmzaUBecFjRpSzqPng1mwGZla68KwrAh7SOnP/:50PUhRCm1qKiAZSOn

Score

10^/10

gozi discovery isfb upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_672152ad8c189380349edef856289cdd.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_672152ad8c189380349edef856289cdd.exe

Resource

win10v2004-20250217-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  JaffaCakes118_672152ad8c189380349edef856289cdd
- Size
  
  13KB
- MD5
  
  672152ad8c189380349edef856289cdd
- SHA1
  
  34ed78c3decf5cec41695fb019bb7d971c304258
- SHA256
  
  2f54807cceeb81f637cb647eeaaa37514a90c61b5e5d7c01a76e6c849cdb6444
- SHA512
  
  09eee3d4a4531d5da2522a71882212b36fd91c0f343e0597ce0f8b418b376e50aa3a5410ac8adeeaaec1e5cdc8d1875757e3dfd5de95dc673982ef291e71bc03
- SSDEEP
  
  384:50DmzaUBecFjRpSzqPng1mwGZla68KwrAh7SOnP/:50PUhRCm1qKiAZSOn
Score

7^/10

discovery upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy