Overview

overview

10

Static

static

10

2024-03-10...ab.exe

windows7-x64

6

2024-03-10...ab.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-10_8f3c151c2b4e2ee0ba24f3df012ba625_gandcrab

  • Size

    73KB

  • Sample

    240310-hcprraeh8s

  • MD5

    8f3c151c2b4e2ee0ba24f3df012ba625

  • SHA1

    c44493e392ae1a37349e275db9d50469b0c0e202

  • SHA256

    3aa483f760e59c25cb629c4ac1422d2eb739d4a26deb2d59103e63d78b414668

  • SHA512

    ddf924f80b279a34708a5d8caf982ef1fd2d2fea6bfb9a5d28293b78f32961bc7d1e7a8c48bb2cb49148d75e0e3236167dc9bb0cab7692574b8ae928d07c2670

  • SSDEEP

    1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

Score
10/10
gandcrabpersistence

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-10_8f3c151c2b4e2ee0ba24f3df012ba625_gandcrab

    • Size

      73KB

    • MD5

      8f3c151c2b4e2ee0ba24f3df012ba625

    • SHA1

      c44493e392ae1a37349e275db9d50469b0c0e202

    • SHA256

      3aa483f760e59c25cb629c4ac1422d2eb739d4a26deb2d59103e63d78b414668

    • SHA512

      ddf924f80b279a34708a5d8caf982ef1fd2d2fea6bfb9a5d28293b78f32961bc7d1e7a8c48bb2cb49148d75e0e3236167dc9bb0cab7692574b8ae928d07c2670

    • SSDEEP

      1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.