General
-
Target
2024-03-24_2c74fcf4b826d4f9a46f8d9a6559d34f_gandcrab
-
Size
73KB
-
Sample
240324-lj8d8aeb6s
-
MD5
2c74fcf4b826d4f9a46f8d9a6559d34f
-
SHA1
dba3efd7b5625bf5d7f69a940fba1272a1127d2e
-
SHA256
ac3c96e0b242063f6c1b05e5df7ff77dd2e7c38bd6a1c42a54cf1b622c92d371
-
SHA512
fb2bedf289d12d3fee41be108c4161d1f8157aacd89900c61dfc6023c3312a105a366d8cfc86fa9499a2fb1ff33f91e606b9622aff2f33607adee7a95db04248
-
SSDEEP
1536:f555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:AMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-03-24_2c74fcf4b826d4f9a46f8d9a6559d34f_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-24_2c74fcf4b826d4f9a46f8d9a6559d34f_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-03-24_2c74fcf4b826d4f9a46f8d9a6559d34f_gandcrab
-
Size
73KB
-
MD5
2c74fcf4b826d4f9a46f8d9a6559d34f
-
SHA1
dba3efd7b5625bf5d7f69a940fba1272a1127d2e
-
SHA256
ac3c96e0b242063f6c1b05e5df7ff77dd2e7c38bd6a1c42a54cf1b622c92d371
-
SHA512
fb2bedf289d12d3fee41be108c4161d1f8157aacd89900c61dfc6023c3312a105a366d8cfc86fa9499a2fb1ff33f91e606b9622aff2f33607adee7a95db04248
-
SSDEEP
1536:f555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:AMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-