Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2024-01-22_9e0c493bd9e82183ef0e141d2fc31abe_gandcrab
-
Size
88KB
-
Sample
240122-t4zltaaehk
-
MD5
9e0c493bd9e82183ef0e141d2fc31abe
-
SHA1
2110c75d06f55cd9d8a5b7457cba1d862a39b3ec
-
SHA256
cbced35ea3c43db6431f5d17cf56564c63583a56299b89a347278fd58f719af4
-
SHA512
550b5ed50ac6efc55240e145572556a916c1057210fa2a24fb6aba70498dda4d8035ade3d1d3f4c29d0121c34999c72b81be872b36d94de4b86e07b652b74880
-
SSDEEP
1536:3rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:3jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Behavioral task
behavioral1
Sample
2024-01-22_9e0c493bd9e82183ef0e141d2fc31abe_gandcrab.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-22_9e0c493bd9e82183ef0e141d2fc31abe_gandcrab.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-01-22_9e0c493bd9e82183ef0e141d2fc31abe_gandcrab
-
Size
88KB
-
MD5
9e0c493bd9e82183ef0e141d2fc31abe
-
SHA1
2110c75d06f55cd9d8a5b7457cba1d862a39b3ec
-
SHA256
cbced35ea3c43db6431f5d17cf56564c63583a56299b89a347278fd58f719af4
-
SHA512
550b5ed50ac6efc55240e145572556a916c1057210fa2a24fb6aba70498dda4d8035ade3d1d3f4c29d0121c34999c72b81be872b36d94de4b86e07b652b74880
-
SSDEEP
1536:3rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:3jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-