General

  • Target

    2024-02-19_0e14adb1597d0c2c5939dece4a1ddc70_gandcrab

  • Size

    73KB

  • MD5

    0e14adb1597d0c2c5939dece4a1ddc70

  • SHA1

    ebad86f7cba5d277ac85b7437bf6b9555d959fef

  • SHA256

    e38adea44df18c7bcd1f813e132475a34883d68ba67b482b57390d2c6503c380

  • SHA512

    22c8adeec309410668bed151f561b8b28e531ce6b5822a22478bfacd210bf49e165dac8140fa42eca281dffbf8a6fefb846144d55411591e703949e8adfd04a4

  • SSDEEP

    1536:j55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:/MSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-19_0e14adb1597d0c2c5939dece4a1ddc70_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections