Resubmissions

21-02-2024 15:47

240221-s8b6msah58 10

21-02-2024 15:44

240221-s6gncaah23 10

General

  • Target

    2024-02-21_d7e85fb1c06bc162bc36dca6930dac03_gandcrab

  • Size

    147KB

  • MD5

    d7e85fb1c06bc162bc36dca6930dac03

  • SHA1

    dfd175c697917d602ed4c0607c823d67de589d8e

  • SHA256

    a42987bd6a481a6e35e060ff2cbd909b4270b98527a8f2b503e62875b3d381d9

  • SHA512

    0471acc873c1b5af89d1eb4cc30070cef63a3368a447a97c1b855ff3d4d6e9f3a0a80616e2720fcd8e38e4cc5d4c8585ef98d853c8b4d6effa79a70b9dc66165

  • SSDEEP

    3072:rBounVyFHFMqqDL2/LgHkc2U6FiPZ8aewZ2ql5f2J9lj:rqxHmqqDL6EHl2U6CbeOl5f2Fj

Score
10/10

Malware Config

Signatures

  • Detects Reflective DLL injection artifacts 1 IoCs
  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • UPX dump on OEP (original entry point) 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-02-21_d7e85fb1c06bc162bc36dca6930dac03_gandcrab
    .exe windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.