General

  • Target

    2024-03-23_fc4903da9962d585c085d3ac0f6bad74_gandcrab

  • Size

    73KB

  • Sample

    240323-cf2mtsca56

  • MD5

    fc4903da9962d585c085d3ac0f6bad74

  • SHA1

    c129ea95e881b5be3f9893cb7fb86215be7de464

  • SHA256

    d07bcb40fa700fdde1ffce4ada845051454be6af0142fea65824e33f1c7cd27b

  • SHA512

    a37728dc82fc168b0aa01a00c22ec80588cd049ab8088e84d1865d831769fd6b40f304d6ef27b64f38ce9f15eaddb7aad51cc1f3a91e1d649ac3be887d5cd5fb

  • SSDEEP

    1536:055u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:mMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-23_fc4903da9962d585c085d3ac0f6bad74_gandcrab

    • Size

      73KB

    • MD5

      fc4903da9962d585c085d3ac0f6bad74

    • SHA1

      c129ea95e881b5be3f9893cb7fb86215be7de464

    • SHA256

      d07bcb40fa700fdde1ffce4ada845051454be6af0142fea65824e33f1c7cd27b

    • SHA512

      a37728dc82fc168b0aa01a00c22ec80588cd049ab8088e84d1865d831769fd6b40f304d6ef27b64f38ce9f15eaddb7aad51cc1f3a91e1d649ac3be887d5cd5fb

    • SSDEEP

      1536:055u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:mMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks