General

  • Target

    2024-03-24_aeb7b0477cef32e93858ad4bb764a2e3_gandcrab

  • Size

    83KB

  • Sample

    240324-ervprshe82

  • MD5

    aeb7b0477cef32e93858ad4bb764a2e3

  • SHA1

    b5149feb37bf4ed4837d659fdf1603d51ce01168

  • SHA256

    75dec597b5daad16f28dbc31f3f7eb10024ccca98a3ea5caf59f7ae7d3b0360b

  • SHA512

    85e31a2b6fbb0791d21a9d1da126c31d41389de4c0c1faa9d5ae0b77d15d9befb13671938287bc3bad97bfa9df1280a2eed059ecd9dd7c99207cdaf10d846d47

  • SSDEEP

    1536:q55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:wMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-24_aeb7b0477cef32e93858ad4bb764a2e3_gandcrab

    • Size

      83KB

    • MD5

      aeb7b0477cef32e93858ad4bb764a2e3

    • SHA1

      b5149feb37bf4ed4837d659fdf1603d51ce01168

    • SHA256

      75dec597b5daad16f28dbc31f3f7eb10024ccca98a3ea5caf59f7ae7d3b0360b

    • SHA512

      85e31a2b6fbb0791d21a9d1da126c31d41389de4c0c1faa9d5ae0b77d15d9befb13671938287bc3bad97bfa9df1280a2eed059ecd9dd7c99207cdaf10d846d47

    • SSDEEP

      1536:q55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:wMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks