gandcrab | 2024-01-25_e8b4ec307bf69e6955a655ef21dccd89_gandcrab_karagany

Sharing

Target

2024-01-25_e8b4ec307bf69e6955a655ef21dccd89_gandcrab_karagany
Size

272KB
MD5

e8b4ec307bf69e6955a655ef21dccd89
SHA1

3fccb14c8514d785f19727b5ec5b1bd44970b95d
SHA256

9529ec77030125563a4617d628173b944a5e0f925e6f44877116b8378e7698b6
SHA512

3049aa3209810c9caaa18e066b972809e323fb968fa8c6c4e623ee3ca7cc86d0c959e3f6eea91e0680e0408e6867841d779cded42e8c698fc80f75ee47c324c1
SSDEEP

3072:l5K/B0toLOSNJJlZHQsozTS+SMqqDL2/TrK2qGrBuj00nReaXkuSQ7cdOd:lcytwbP1yTS+xqqDL6HKerUDOI

Score

10^/10

gandcrab

Detects Reflective DLL injection artifacts 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_ReflectiveLoader

Detects ransomware indicator 1 IoCs

resource	yara_rule
sample	SUSP_RANSOMWARE_Indicator_Jul20

GandCrab payload 1 IoCs

resource	yara_rule
sample	family_gandcrab

Gandcrab Payload 1 IoCs

resource	yara_rule
sample	Gandcrab

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-25_e8b4ec307bf69e6955a655ef21dccd89_gandcrab_karagany