General

  • Target

    0acfb4f0422bb0968118d838f1fe09a3_gandcrab_JC.exe

  • Size

    73KB

  • MD5

    0acfb4f0422bb0968118d838f1fe09a3

  • SHA1

    c01379a4eb61300820a822ebac05c8e459ea8772

  • SHA256

    7707901328940f16da5c7ffdee207d0b9b44ab25627a53d2ca42073f8e8d0215

  • SHA512

    d4856d34c8903e3ccde6f98c9051215396b665155556d685ff80b0f2b8b31fb1a5521171bbcb32014e7dea5132ed6d35c79726e55452d7f5774195d21579de5b

  • SSDEEP

    1536:ngSeGDjtQhnwmmB0yjMqqUM2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:nMSjOnrmBbMqqMmr3IdE8we0Avu5r++N

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0acfb4f0422bb0968118d838f1fe09a3_gandcrab_JC.exe
    .exe windows x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections