General
-
Target
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61
-
Size
212KB
-
Sample
220703-ejlf5agcb9
-
MD5
a82d5bbfb026a00283a6fab1d4c530dc
-
SHA1
8974d9525d2b88d9f2a6ef26852f4afe63e6df04
-
SHA256
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61
-
SHA512
5c73e2b419b9bc277a18fd49a54574f083c8e9d478caf3ad5bd02891ec449539bbcb5ffd96935ccd9e3c0d7b87a975ed6d655835f2fbd6dc1cde097802fd722e
Static task
static1
Behavioral task
behavioral1
Sample
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61
-
Size
212KB
-
MD5
a82d5bbfb026a00283a6fab1d4c530dc
-
SHA1
8974d9525d2b88d9f2a6ef26852f4afe63e6df04
-
SHA256
3d2eb2c3b8340f23e9430adc1520a663454d78a58123397306c1299278182b61
-
SHA512
5c73e2b419b9bc277a18fd49a54574f083c8e9d478caf3ad5bd02891ec449539bbcb5ffd96935ccd9e3c0d7b87a975ed6d655835f2fbd6dc1cde097802fd722e
Score10/10-
GandCrab Payload
-
suricata: ET MALWARE Observed GandCrab Ransomware Domain (carder .bit in DNS Lookup)
suricata: ET MALWARE Observed GandCrab Ransomware Domain (carder .bit in DNS Lookup)
-
suricata: ET MALWARE Observed GandCrab Ransomware Domain (ransomware .bit in DNS Lookup)
suricata: ET MALWARE Observed GandCrab Ransomware Domain (ransomware .bit in DNS Lookup)
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-