General
-
Target
2024-03-23_0bbe971435816b70f412412a60308843_gandcrab
-
Size
73KB
-
Sample
240323-3dgsrage4s
-
MD5
0bbe971435816b70f412412a60308843
-
SHA1
23c6de966f8eca567e16f37b7d64f434f55f69a2
-
SHA256
43930946de3902c9ec600d2245f06ad928d6c341f481c8e4e7d64dda0d0e7144
-
SHA512
85434dd9607893e5c379b74b0649c9fd9251a7b17b4d377353554a965697e48414b730d891f81495316e44f1b5971a724c1ec1a51d92c929a396d774ee51490f
-
SSDEEP
1536:C555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:TMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-03-23_0bbe971435816b70f412412a60308843_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-23_0bbe971435816b70f412412a60308843_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-03-23_0bbe971435816b70f412412a60308843_gandcrab
-
Size
73KB
-
MD5
0bbe971435816b70f412412a60308843
-
SHA1
23c6de966f8eca567e16f37b7d64f434f55f69a2
-
SHA256
43930946de3902c9ec600d2245f06ad928d6c341f481c8e4e7d64dda0d0e7144
-
SHA512
85434dd9607893e5c379b74b0649c9fd9251a7b17b4d377353554a965697e48414b730d891f81495316e44f1b5971a724c1ec1a51d92c929a396d774ee51490f
-
SSDEEP
1536:C555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:TMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-