General

  • Target

    97ac067a47d4ab1c196baf5c054506f3.bin

  • Size

    316KB

  • Sample

    240324-dgcwjabe4s

  • MD5

    97ac067a47d4ab1c196baf5c054506f3

  • SHA1

    3bc97f8aeb9ef123e7683b3e12a823e3e01ef6f3

  • SHA256

    7b3af63a771a93bda5a0d67f0e801b440fada52cb006dd712c9c99c63721c9d1

  • SHA512

    d43d453ca48dfb06c6f8ee4828f4c2e7c2a56f6953ac8bf0e472a1522783c1f2726b29c5d89bf09fa7bcb2a77f3c233c98d0fbb0edaa3c55c5435bc1abdc5163

  • SSDEEP

    6144:1vExNMO1UnseVgkV0xwvfxnhLTiusLe1740/:WTM0Unsna5mut40/

Malware Config

Targets

    • Target

      97ac067a47d4ab1c196baf5c054506f3.bin

    • Size

      316KB

    • MD5

      97ac067a47d4ab1c196baf5c054506f3

    • SHA1

      3bc97f8aeb9ef123e7683b3e12a823e3e01ef6f3

    • SHA256

      7b3af63a771a93bda5a0d67f0e801b440fada52cb006dd712c9c99c63721c9d1

    • SHA512

      d43d453ca48dfb06c6f8ee4828f4c2e7c2a56f6953ac8bf0e472a1522783c1f2726b29c5d89bf09fa7bcb2a77f3c233c98d0fbb0edaa3c55c5435bc1abdc5163

    • SSDEEP

      6144:1vExNMO1UnseVgkV0xwvfxnhLTiusLe1740/:WTM0Unsna5mut40/

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks