General

  • Target

    2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab

  • Size

    88KB

  • Sample

    240324-mlqgvsef5y

  • MD5

    87372c95f52ffdb40489340b30074196

  • SHA1

    1cf4b0be723c9c29e311e0cfb565d873d1840e95

  • SHA256

    2b8b20b86c2490c18306e37fb57e4f8441d488f50f3fc33c894c7d9228569059

  • SHA512

    247b51a6086daf089653d9ecead78e8066b8bb689b87cd2fefdc49ddf9730507d8ee9fcd270f12e4205b7f46cc36631269481bf95775ee46743cf67b68f5de06

  • SSDEEP

    1536:SrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:SjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-24_87372c95f52ffdb40489340b30074196_gandcrab

    • Size

      88KB

    • MD5

      87372c95f52ffdb40489340b30074196

    • SHA1

      1cf4b0be723c9c29e311e0cfb565d873d1840e95

    • SHA256

      2b8b20b86c2490c18306e37fb57e4f8441d488f50f3fc33c894c7d9228569059

    • SHA512

      247b51a6086daf089653d9ecead78e8066b8bb689b87cd2fefdc49ddf9730507d8ee9fcd270f12e4205b7f46cc36631269481bf95775ee46743cf67b68f5de06

    • SSDEEP

      1536:SrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:SjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks