General
-
Target
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec
-
Size
256KB
-
Sample
220622-rwcqzabef5
-
MD5
e435ada682452154c0929068fa84f587
-
SHA1
4b46b7f352d5049f39e965f019c04f2ab07ad0f0
-
SHA256
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec
-
SHA512
b2d53406b655a470e250d6beb1a59ae5b62131775f01519beafea9cdcd9420bae8b2f897055c953cb441afeda90db0815f68ad9abef724ab0b37806603a9620d
Static task
static1
Behavioral task
behavioral1
Sample
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec
-
Size
256KB
-
MD5
e435ada682452154c0929068fa84f587
-
SHA1
4b46b7f352d5049f39e965f019c04f2ab07ad0f0
-
SHA256
2d9daac7915ae801cd4567531c63762cc7be7c92fab458be1122a8fc637a42ec
-
SHA512
b2d53406b655a470e250d6beb1a59ae5b62131775f01519beafea9cdcd9420bae8b2f897055c953cb441afeda90db0815f68ad9abef724ab0b37806603a9620d
Score10/10-
GandCrab Payload
-
suricata: ET MALWARE Observed GandCrab Ransomware Domain (carder .bit in DNS Lookup)
suricata: ET MALWARE Observed GandCrab Ransomware Domain (carder .bit in DNS Lookup)
-
suricata: ET MALWARE Observed GandCrab Ransomware Domain (ransomware .bit in DNS Lookup)
suricata: ET MALWARE Observed GandCrab Ransomware Domain (ransomware .bit in DNS Lookup)
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-