General

  • Target

    2023-08-25_5f9e8d76ac369a26c988c33d100129d8_gandcrab_JC.exe

  • Size

    73KB

  • MD5

    5f9e8d76ac369a26c988c33d100129d8

  • SHA1

    22dc629d89d940043fe4d720591cb51309fd2549

  • SHA256

    f2c99a4c2ea9e8c1bf6524aa802b7d738fca6b8984e3811cfb1ebc3db6596295

  • SHA512

    fd4b9f2f3f1eb14e0030cbc04bbdcb9561efb3e8a15a150e85a17f917be440a16cec6129ef725b09ed30583eb31671b0978f017e884853f84abae43cac43f9ba

  • SSDEEP

    1536:M555555555555pmgSeGDjtQhnwmmB0y6MqqU+2bbbAV2/S2mr3IdE8mne0Avu5r+:pMSjOnrmByMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2023-08-25_5f9e8d76ac369a26c988c33d100129d8_gandcrab_JC.exe
    .exe windows:5 windows x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections