General
-
Target
2024-03-28_352fa75bd47d5dac7d4fa29784e8924c_karagany_mafia
-
Size
308KB
-
Sample
240328-3d17dsbe5t
-
MD5
352fa75bd47d5dac7d4fa29784e8924c
-
SHA1
97120fb04df6691fbcb47f0e232faade5ab9f0f5
-
SHA256
d3ed2a1a5d993a1c1244b96488d34bd49daac92e599cb3e8c049e7b84bcbd498
-
SHA512
526afe0cbd5d23cd3f8ec1043d1b656bdddf38f08af79d6efcab36c96d25ee02d81493fab78116037d0c2f1c5f72173596bac0e911a4db9d0163f115bc5ffb89
-
SSDEEP
6144:OzL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:MDHNam62ZdKmZmuPH
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-28_352fa75bd47d5dac7d4fa29784e8924c_karagany_mafia.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-03-28_352fa75bd47d5dac7d4fa29784e8924c_karagany_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-28_352fa75bd47d5dac7d4fa29784e8924c_karagany_mafia
-
Size
308KB
-
MD5
352fa75bd47d5dac7d4fa29784e8924c
-
SHA1
97120fb04df6691fbcb47f0e232faade5ab9f0f5
-
SHA256
d3ed2a1a5d993a1c1244b96488d34bd49daac92e599cb3e8c049e7b84bcbd498
-
SHA512
526afe0cbd5d23cd3f8ec1043d1b656bdddf38f08af79d6efcab36c96d25ee02d81493fab78116037d0c2f1c5f72173596bac0e911a4db9d0163f115bc5ffb89
-
SSDEEP
6144:OzL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:MDHNam62ZdKmZmuPH
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-