General

  • Target

    8f83f7af3713846dcf838d8876ce81df_gandcrab_JC.exe

  • Size

    252KB

  • MD5

    8f83f7af3713846dcf838d8876ce81df

  • SHA1

    79fcd0a4ad52e3f0c9db8104d586358fef63a055

  • SHA256

    35b1069e2747f4e9429915be31781ceb0c429176c3901e33f57ac55cc4bf775b

  • SHA512

    f5f0cfc6a1941203ec2b601d78e13895dc0b112fcff56e9cb745914386669e176ca5c81510c6b47744d991fbd47ba529b9e8a565fe1f2835c115dc56f96022e1

  • SSDEEP

    6144:gXjOnr6+qqDL64vdRD3f6mP+pmplO2oS8K:gTOn6qn6cRLf/+oy2oS

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8f83f7af3713846dcf838d8876ce81df_gandcrab_JC.exe
    .exe windows x86


    Headers

    Sections