gandcrab | 2024-01-23_442f2316d55ec6d801470cf99e400fee_gandcrab_karagany

Sharing

Target

2024-01-23_442f2316d55ec6d801470cf99e400fee_gandcrab_karagany
Size

272KB
MD5

442f2316d55ec6d801470cf99e400fee
SHA1

abbba047a267c6a52dcac0c5e9958f1c7a69f17a
SHA256

d5b63602f76c7b4fbe4b07b11aff410e31c54105e06b1cb658d1be859d17f719
SHA512

c7343b1ec1830941992720b1bce5b489a3257858a8da2919a6baa5e7c00c7c474f975532b92eef6d53fa605832ede20af775c84f14d225fe94afe797907945b7
SSDEEP

6144:lcytwbs1yTS+xqqDL6HKVgIpxIp8mDtfPBRwasxX:Cyis1Rqn6qVgIpxIhDt

Score

10^/10

gandcrab

Detects Reflective DLL injection artifacts 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_ReflectiveLoader

Detects ransomware indicator 1 IoCs

resource	yara_rule
sample	SUSP_RANSOMWARE_Indicator_Jul20

GandCrab payload 1 IoCs

resource	yara_rule
sample	family_gandcrab

Gandcrab Payload 1 IoCs

resource	yara_rule
sample	Gandcrab

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-23_442f2316d55ec6d801470cf99e400fee_gandcrab_karagany