General

  • Target

    2024-02-13_394772dd8cb31dcca546fc4f4a5fd347_gandcrab

  • Size

    73KB

  • MD5

    394772dd8cb31dcca546fc4f4a5fd347

  • SHA1

    30dcfbc8e0cc66b9c798f63863818ddbffaad4f6

  • SHA256

    b3613cc81560296b10b69bacd4d31d0d7d4f98f14e160e5b63c9fb61e18f2f59

  • SHA512

    6f1c84f1e0420643ba9699021400f16c447c851e90f784a30bc77ce5f8df4a3db3fc9d96bbc6fe83359622e313014b1b80c0831b56623f6053d8b4a72a5c1e6c

  • SSDEEP

    1536:9555555555555pmgSeGDjtQhnwmmB0yYMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rx:6MSjOnrmBAMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-13_394772dd8cb31dcca546fc4f4a5fd347_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.