General

  • Target

    2024-03-24_e08b75c62f1acfe95f544db82c67900d_gandcrab

  • Size

    73KB

  • Sample

    240324-mp8slsca56

  • MD5

    e08b75c62f1acfe95f544db82c67900d

  • SHA1

    09ef81554cc38debf7d7770b7b4975ac2b6d8002

  • SHA256

    a966ff29fc1fd34e441dbf8eacc7e72ba2da6d9ba786fa839130c964423fa2fe

  • SHA512

    ac1248fc19408e6ecf20c3de43b4d44a1e8adb6a67ccecede059d36bf0a35104b2f5ca8fd713210d5b3afbb332dc759de8453307320269e483d1492cf2751dd6

  • SSDEEP

    1536:155u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:dMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-03-24_e08b75c62f1acfe95f544db82c67900d_gandcrab

    • Size

      73KB

    • MD5

      e08b75c62f1acfe95f544db82c67900d

    • SHA1

      09ef81554cc38debf7d7770b7b4975ac2b6d8002

    • SHA256

      a966ff29fc1fd34e441dbf8eacc7e72ba2da6d9ba786fa839130c964423fa2fe

    • SHA512

      ac1248fc19408e6ecf20c3de43b4d44a1e8adb6a67ccecede059d36bf0a35104b2f5ca8fd713210d5b3afbb332dc759de8453307320269e483d1492cf2751dd6

    • SSDEEP

      1536:155u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:dMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks