General

  • Target

    28335204e95167bd3370088fa5080ed3.bin

  • Size

    88KB

  • Sample

    240324-bqsl8sab5y

  • MD5

    28335204e95167bd3370088fa5080ed3

  • SHA1

    d386224ddbe4795f0567ebb2173ff24169aa4b6d

  • SHA256

    e1211684d47295cf6938cc88e822c8ccaebc727f3e44a6082bcec8ad477321da

  • SHA512

    3e694e7370a6a36d21ab66aace65b5b3006db67b204f9e968e685ab5adff69b9a3532c0f3c403220cd8ffb4a4271b80fb8c7f3b99004b0baad48e29b1275547e

  • SSDEEP

    1536:FrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:FjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      28335204e95167bd3370088fa5080ed3.bin

    • Size

      88KB

    • MD5

      28335204e95167bd3370088fa5080ed3

    • SHA1

      d386224ddbe4795f0567ebb2173ff24169aa4b6d

    • SHA256

      e1211684d47295cf6938cc88e822c8ccaebc727f3e44a6082bcec8ad477321da

    • SHA512

      3e694e7370a6a36d21ab66aace65b5b3006db67b204f9e968e685ab5adff69b9a3532c0f3c403220cd8ffb4a4271b80fb8c7f3b99004b0baad48e29b1275547e

    • SSDEEP

      1536:FrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:FjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks