gandcrab | 2024-01-23_52ec7d36c440e2185e2cf597a1ae6690_gandcrab_karagany

Sharing

Target

2024-01-23_52ec7d36c440e2185e2cf597a1ae6690_gandcrab_karagany
Size

244KB
MD5

52ec7d36c440e2185e2cf597a1ae6690
SHA1

e30aab79011ecb0312ecaffd6ed440d548638c3f
SHA256

cb14f66ca59dcd804aab9714bc3cd8eb02f84dea3d658130b7a46d6132c53729
SHA512

b2e79bea87cb0975fb1d57f332ab05cb169bd8bafae5d9715e5a33e532c74af60937c205f4f5e9a00054436b37d0f9c2759ce87d8f7e61bd57b8e577cc3dd93d
SSDEEP

3072:l5K/B0toLOSNJRlZHQsozTS+SMqqDL2/TrKBDGh/YrDAEioKhAv:lcytwbD1yTS+xqqDL6HKkhEKs

Score

10^/10

gandcrab

Detects Reflective DLL injection artifacts 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_ReflectiveLoader

Detects ransomware indicator 1 IoCs

resource	yara_rule
sample	SUSP_RANSOMWARE_Indicator_Jul20

GandCrab payload 1 IoCs

resource	yara_rule
sample	family_gandcrab

Gandcrab Payload 1 IoCs

resource	yara_rule
sample	Gandcrab

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-23_52ec7d36c440e2185e2cf597a1ae6690_gandcrab_karagany