General

  • Target

    2024-01-01_ce2599ef0d8dceafb81b7774784754b5_gandcrab

  • Size

    73KB

  • MD5

    ce2599ef0d8dceafb81b7774784754b5

  • SHA1

    2b041c1f408667b2b1cb6724057d16dd08f1ebd1

  • SHA256

    3c819f9566ba5be7732ca019ddfbbd96b0ee71a55173453875942dc6947604f9

  • SHA512

    218e9ff8c272ff3b24dc9642b344ee2dc571cf1119fa45f766c9f0195c937f5fd3d6206b3e4980461fddf0140604eac93f5e2d21fb0ba98004bb96f46bb3b3f1

  • SSDEEP

    1536:Kb55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu51:IMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-01-01_ce2599ef0d8dceafb81b7774784754b5_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections