General

  • Target

    2024-02-20_0c4ad1e7296cb096dca013899ede0525_gandcrab

  • Size

    73KB

  • MD5

    0c4ad1e7296cb096dca013899ede0525

  • SHA1

    bda25179e4a1fe10ae847f06efea9a8159037df2

  • SHA256

    ffbc648e289ab5b1b69b8b8ec1b2a7050b3a2264d26daaaa1e48b3e1c1aec1b4

  • SHA512

    ea755744056d148d01d8b0fb0365fc244f2aa8b3bf51b87dadc67de04509dc14390c6a6636fef898cb27ca485b7e838ddfa474ab845cbe83e10ec58b7c5bf6b8

  • SSDEEP

    1536:Y555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:1MSjOnrmBxMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-20_0c4ad1e7296cb096dca013899ede0525_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections