General
-
Target
2024-01-01_a102f938dc988ce39926e362e12ee1a5_karagany_mafia
-
Size
308KB
-
Sample
240105-gg7bxsdhf4
-
MD5
a102f938dc988ce39926e362e12ee1a5
-
SHA1
cb1cfe5cbf09de921a9177120ec00b449dfe42f5
-
SHA256
02af78ad58def88002f6bd37770c2bec6d2bda17db7314c05fd2d9e66d0f6dfe
-
SHA512
f78fa6db8ea8f169ae05d876bb7489f3b2f4c68679ed7dda23697bf5c09fa6a12f974c32aec96d355da682ef62158f8941c4258b597074895f939c899d2e1a71
-
SSDEEP
6144:UzL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:iDHNam62ZdKmZmuPH
Malware Config
Targets
-
-
Target
2024-01-01_a102f938dc988ce39926e362e12ee1a5_karagany_mafia
-
Size
308KB
-
MD5
a102f938dc988ce39926e362e12ee1a5
-
SHA1
cb1cfe5cbf09de921a9177120ec00b449dfe42f5
-
SHA256
02af78ad58def88002f6bd37770c2bec6d2bda17db7314c05fd2d9e66d0f6dfe
-
SHA512
f78fa6db8ea8f169ae05d876bb7489f3b2f4c68679ed7dda23697bf5c09fa6a12f974c32aec96d355da682ef62158f8941c4258b597074895f939c899d2e1a71
-
SSDEEP
6144:UzL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:iDHNam62ZdKmZmuPH
Score10/10-
GandCrab payload
-
Gandcrab
Gandcrab is a Trojan horse that encrypts files on a computer.
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-