General

  • Target

    2024-01-01_4dba067feb3dd9f5dd80c22b1cef08d7_gandcrab

  • Size

    73KB

  • MD5

    4dba067feb3dd9f5dd80c22b1cef08d7

  • SHA1

    a969c0889212f1de154d26913a3e20c0cc7cfbe3

  • SHA256

    2fc6719c17ede1553d83e7f6f9d441bde2a630304d7fc54773d637c1ec0db747

  • SHA512

    78aeb7ac4ca200f039abefab459948819d21e323f502842124676044f7a13fbab015b905db4b788468cfd94180fa089e9b1876e709ca7950219117fac142da2a

  • SSDEEP

    1536:5555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:GMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-01-01_4dba067feb3dd9f5dd80c22b1cef08d7_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections