General
-
Target
2024-03-22_6613511329fa3a148be06295ec52d208_mafia
-
Size
275KB
-
Sample
240322-nvvnlsdf5s
-
MD5
6613511329fa3a148be06295ec52d208
-
SHA1
5943d3e4d288ed19e071af013d62dd3d829e107a
-
SHA256
2a8d889add11dd0608ea2b875536670146b4e45d4b011be1528ba36a77b8dd03
-
SHA512
582781958912e4993133d004c013edee6de855db390adaafc16bbe15433d05301ad5d4a6f34e0315e38d2f90fe8e17a5b08099cb146b3dd7f68db8259f926639
-
SSDEEP
3072:L0x9cSImYuzJHZYx7YmG02RvcLqP+RhML4svPeTs+5KDR+UBz9cvMh2gYMva6SUJ:QJ1dHYxUmG02RkOP+MtWTsqKFP593H
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-22_6613511329fa3a148be06295ec52d208_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-22_6613511329fa3a148be06295ec52d208_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-22_6613511329fa3a148be06295ec52d208_mafia
-
Size
275KB
-
MD5
6613511329fa3a148be06295ec52d208
-
SHA1
5943d3e4d288ed19e071af013d62dd3d829e107a
-
SHA256
2a8d889add11dd0608ea2b875536670146b4e45d4b011be1528ba36a77b8dd03
-
SHA512
582781958912e4993133d004c013edee6de855db390adaafc16bbe15433d05301ad5d4a6f34e0315e38d2f90fe8e17a5b08099cb146b3dd7f68db8259f926639
-
SSDEEP
3072:L0x9cSImYuzJHZYx7YmG02RvcLqP+RhML4svPeTs+5KDR+UBz9cvMh2gYMva6SUJ:QJ1dHYxUmG02RkOP+MtWTsqKFP593H
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-