General
-
Target
1ea41c5ee94b23exeexeexeex.exe
-
Size
145KB
-
Sample
230705-ytbt8afe76
-
MD5
1ea41c5ee94b23b2932479cabca58011
-
SHA1
d372e5d32171a27ec4e5d805b365e0b329d875f9
-
SHA256
2d07336332b50a4a9d94e2d35a99a46b0d32a1ae6029b6225b40da6843986e6e
-
SHA512
ee4006be76a8f3513f83e4ea7120d484ddb18b5305af79d60368088159ecc15d13d7f2d61584df3a9ca1d8efdd8a554881ae8bf3fdcb093b9befe27f0f605837
-
SSDEEP
3072:oYHVHd2NCMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdCjRv9OtN:oyOqqDL64vdGREz
Malware Config
Targets
-
-
Target
1ea41c5ee94b23exeexeexeex.exe
-
Size
145KB
-
MD5
1ea41c5ee94b23b2932479cabca58011
-
SHA1
d372e5d32171a27ec4e5d805b365e0b329d875f9
-
SHA256
2d07336332b50a4a9d94e2d35a99a46b0d32a1ae6029b6225b40da6843986e6e
-
SHA512
ee4006be76a8f3513f83e4ea7120d484ddb18b5305af79d60368088159ecc15d13d7f2d61584df3a9ca1d8efdd8a554881ae8bf3fdcb093b9befe27f0f605837
-
SSDEEP
3072:oYHVHd2NCMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdCjRv9OtN:oyOqqDL64vdGREz
Score10/10-
GandCrab payload
-
Gandcrab
Gandcrab is a Trojan horse that encrypts files on a computer.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-