General
-
Target
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067
-
Size
130KB
-
Sample
220128-xhvyaaaggk
-
MD5
50c0c967b590235bb84fadd52e17d906
-
SHA1
0c15e677d1a078a8cbee56f27aeeef4cf61c517f
-
SHA256
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067
-
SHA512
b88e1310b48d27b3bf739e1b9c9e904661c1e7ccebbc1145bb9556221ee6b968d3f1f8cee42c3cdc01f4f3e55f967d93cb00f5fb9b7fd86372824b3151310509
Static task
static1
Behavioral task
behavioral1
Sample
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067.dll
Resource
win10-en-20211208
Malware Config
Extracted
C:\XOVFQWDJDU-DECRYPT.txt
http://gandcrabmfe6mnef.onion/605e4f1ecf6e5aad
Targets
-
-
Target
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067
-
Size
130KB
-
MD5
50c0c967b590235bb84fadd52e17d906
-
SHA1
0c15e677d1a078a8cbee56f27aeeef4cf61c517f
-
SHA256
b24ec3bc9de1faa5a55c54835c2673e244e7b42e291f70cbdc2c23672abc7067
-
SHA512
b88e1310b48d27b3bf739e1b9c9e904661c1e7ccebbc1145bb9556221ee6b968d3f1f8cee42c3cdc01f4f3e55f967d93cb00f5fb9b7fd86372824b3151310509
Score10/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-