General
-
Target
2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab
-
Size
88KB
-
Sample
240324-mlqgvsef5y
-
MD5
87372c95f52ffdb40489340b30074196
-
SHA1
1cf4b0be723c9c29e311e0cfb565d873d1840e95
-
SHA256
2b8b20b86c2490c18306e37fb57e4f8441d488f50f3fc33c894c7d9228569059
-
SHA512
247b51a6086daf089653d9ecead78e8066b8bb689b87cd2fefdc49ddf9730507d8ee9fcd270f12e4205b7f46cc36631269481bf95775ee46743cf67b68f5de06
-
SSDEEP
1536:SrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:SjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Behavioral task
behavioral1
Sample
2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab
-
Size
88KB
-
MD5
87372c95f52ffdb40489340b30074196
-
SHA1
1cf4b0be723c9c29e311e0cfb565d873d1840e95
-
SHA256
2b8b20b86c2490c18306e37fb57e4f8441d488f50f3fc33c894c7d9228569059
-
SHA512
247b51a6086daf089653d9ecead78e8066b8bb689b87cd2fefdc49ddf9730507d8ee9fcd270f12e4205b7f46cc36631269481bf95775ee46743cf67b68f5de06
-
SSDEEP
1536:SrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:SjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-