General

  • Target

    2024-03-23_0bbe971435816b70f412412a60308843_gandcrab

  • Size

    73KB

  • Sample

    240323-3dgsrage4s

  • MD5

    0bbe971435816b70f412412a60308843

  • SHA1

    23c6de966f8eca567e16f37b7d64f434f55f69a2

  • SHA256

    43930946de3902c9ec600d2245f06ad928d6c341f481c8e4e7d64dda0d0e7144

  • SHA512

    85434dd9607893e5c379b74b0649c9fd9251a7b17b4d377353554a965697e48414b730d891f81495316e44f1b5971a724c1ec1a51d92c929a396d774ee51490f

  • SSDEEP

    1536:C555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:TMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-23_0bbe971435816b70f412412a60308843_gandcrab

    • Size

      73KB

    • MD5

      0bbe971435816b70f412412a60308843

    • SHA1

      23c6de966f8eca567e16f37b7d64f434f55f69a2

    • SHA256

      43930946de3902c9ec600d2245f06ad928d6c341f481c8e4e7d64dda0d0e7144

    • SHA512

      85434dd9607893e5c379b74b0649c9fd9251a7b17b4d377353554a965697e48414b730d891f81495316e44f1b5971a724c1ec1a51d92c929a396d774ee51490f

    • SSDEEP

      1536:C555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:TMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks