General

  • Target

    2024-03-23_376297e37d785e4eae1280f243d51d22_gandcrab

  • Size

    83KB

  • Sample

    240323-3gxy5sea95

  • MD5

    376297e37d785e4eae1280f243d51d22

  • SHA1

    d713afcc592c7bbbb5446884eaedbc03327f9ffb

  • SHA256

    268febacf77d98be3ba7c4543625a2179e63ffa5086c6a270d0aa6a4cdf7a433

  • SHA512

    e40d96410231ff4d42d6a4949c470188a671457ccddc4abccc26fe804f40babb472457c12f577114d12935ae66c1babad01036e345dfb660ca6758f4c3d19603

  • SSDEEP

    1536:F55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:NMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-23_376297e37d785e4eae1280f243d51d22_gandcrab

    • Size

      83KB

    • MD5

      376297e37d785e4eae1280f243d51d22

    • SHA1

      d713afcc592c7bbbb5446884eaedbc03327f9ffb

    • SHA256

      268febacf77d98be3ba7c4543625a2179e63ffa5086c6a270d0aa6a4cdf7a433

    • SHA512

      e40d96410231ff4d42d6a4949c470188a671457ccddc4abccc26fe804f40babb472457c12f577114d12935ae66c1babad01036e345dfb660ca6758f4c3d19603

    • SSDEEP

      1536:F55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:NMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks