Gozi

GPTKB entity

Statements (43)
Predicate Object
gptkbp:instanceOf gptkb:virus
gptkbp:abilities web injection
keylogging
form grabbing
gptkbp:alsoKnownAs gptkb:Ursnif
gptkb:Gozi_Trojan
gptkb:ISFB
gptkbp:arrested gptkb:Deniss_Calovskis
gptkb:Mihai_Ionut_Paunescu
gptkb:Nikita_Kuzmin
gptkbp:countermeasures software updates
safe email practices
up-to-date antivirus
gptkbp:detects gptkb:security
gptkbp:discoveredBy 2007
https://www.w3.org/2000/01/rdf-schema#label Gozi
gptkbp:notableEvent theft of millions of dollars from bank accounts
gptkbp:notableFeature code injection
data exfiltration
modular architecture
persistence mechanisms
gptkbp:programmingLanguage gptkb:assembly_language
gptkb:C++
gptkbp:purpose steal banking credentials
gptkbp:relatedTo gptkb:Dridex
gptkb:Zeus_(malware)
gptkb:TrickBot
gptkbp:sourceCodeLeaked 2010
gptkbp:spreadTo malicious email attachments
drive-by downloads
gptkbp:target gptkb:Windows_operating_system
financial institutions
online banking users
gptkbp:type malware
gptkbp:usedBy cybercriminals
gptkbp:uses command and control servers
encrypted communication
gptkbp:usesMalware gptkb:Gozi_family
gptkbp:variant gptkb:Ursnif
gptkb:Gozi_v2
gptkb:ISFB
gptkbp:bfsParent gptkb:Domain_Generation_Algorithm
gptkbp:bfsLayer 6