General
-
Target
NA_080d87d0ee5cf7exe_JC.exe
-
Size
145KB
-
Sample
230722-169ywsda3w
-
MD5
080d87d0ee5cf7e1ab0339a9ab71c939
-
SHA1
8612abc00a1f784b3083cd92959da89554bf5030
-
SHA256
4d5477fde74266af698a1ab33967f0bdfb35b0742a2b2fb64606f1c38017e4da
-
SHA512
a66dbbfe2b7326d84abe0002bcbe3bdd2e09d978c92afe74e55cee08a2ddf563b13386ac058e974ce21ebafa96583d02d7d441e804f95098825d5bcdfd13a80b
-
SSDEEP
3072:RYHVHd2NCMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdCjRv9OtN:RyOqqDL64vdGREz
Malware Config
Targets
-
-
Target
NA_080d87d0ee5cf7exe_JC.exe
-
Size
145KB
-
MD5
080d87d0ee5cf7e1ab0339a9ab71c939
-
SHA1
8612abc00a1f784b3083cd92959da89554bf5030
-
SHA256
4d5477fde74266af698a1ab33967f0bdfb35b0742a2b2fb64606f1c38017e4da
-
SHA512
a66dbbfe2b7326d84abe0002bcbe3bdd2e09d978c92afe74e55cee08a2ddf563b13386ac058e974ce21ebafa96583d02d7d441e804f95098825d5bcdfd13a80b
-
SSDEEP
3072:RYHVHd2NCMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdCjRv9OtN:RyOqqDL64vdGREz
Score10/10-
GandCrab payload
-
Gandcrab
Gandcrab is a Trojan horse that encrypts files on a computer.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-