General
-
Target
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd
-
Size
163KB
-
Sample
240629-22p9csscmn
-
MD5
c8a75994ff01ab5a6e91962e1414aa53
-
SHA1
0b75334f198b29a9bfac8501e83477a30cc11692
-
SHA256
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd
-
SHA512
63c20ce7b3624fa01f9f27474c0f7a792b5f081fa6132031556600ac4347a90fc19e9341ef0961276f1dbaaae1fa1e7929eea7c21e9b7d5241070b66bc0bc4ed
-
SSDEEP
1536:P/ST+tPoJlGLpvn6N9/SnsC1rfryLOgblProNVU4qNVUrk/9QbfBr+7GwKrPAsqE:3M+NSgj1XSbltOrWKDBr+yJb
Static task
static1
Behavioral task
behavioral1
Sample
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gozi
Targets
-
-
Target
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd
-
Size
163KB
-
MD5
c8a75994ff01ab5a6e91962e1414aa53
-
SHA1
0b75334f198b29a9bfac8501e83477a30cc11692
-
SHA256
7e57b57bb68846285690dd666dcc2f0f8daec7a8f31a23ea1797e7bd7708c4bd
-
SHA512
63c20ce7b3624fa01f9f27474c0f7a792b5f081fa6132031556600ac4347a90fc19e9341ef0961276f1dbaaae1fa1e7929eea7c21e9b7d5241070b66bc0bc4ed
-
SSDEEP
1536:P/ST+tPoJlGLpvn6N9/SnsC1rfryLOgblProNVU4qNVUrk/9QbfBr+7GwKrPAsqE:3M+NSgj1XSbltOrWKDBr+yJb
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Detects executables built or packed with MPress PE compressor
-
UPX dump on OEP (original entry point)
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-