General
-
Target
2024-03-29_cf3aa2db3a7c660b91f5c296cb54be63_karagany_mafia
-
Size
258KB
-
Sample
240329-vswlfsdc8t
-
MD5
cf3aa2db3a7c660b91f5c296cb54be63
-
SHA1
7a41bec3e6246f31b991def207976da0f204748c
-
SHA256
ba3842b028d12f22ed9c45be962f15349ebc29c013dd3776e46bc389577c42a3
-
SHA512
23ee1daee36291ac5690f230ec3565fcfd985d5a6e4274499a039d8108b25254dfaf4172c9bd39dce0a3758b68fc17868961d12c4e4512f2f8da5d93524931e5
-
SSDEEP
6144:Fm1G8FVA6aJ/Ruvqdo1NGKXmhYvWVQMBCXaFhWzAJC:KFG6aJ/Qcu8Ykv2aFhUP
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-29_cf3aa2db3a7c660b91f5c296cb54be63_karagany_mafia.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
2024-03-29_cf3aa2db3a7c660b91f5c296cb54be63_karagany_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-29_cf3aa2db3a7c660b91f5c296cb54be63_karagany_mafia
-
Size
258KB
-
MD5
cf3aa2db3a7c660b91f5c296cb54be63
-
SHA1
7a41bec3e6246f31b991def207976da0f204748c
-
SHA256
ba3842b028d12f22ed9c45be962f15349ebc29c013dd3776e46bc389577c42a3
-
SHA512
23ee1daee36291ac5690f230ec3565fcfd985d5a6e4274499a039d8108b25254dfaf4172c9bd39dce0a3758b68fc17868961d12c4e4512f2f8da5d93524931e5
-
SSDEEP
6144:Fm1G8FVA6aJ/Ruvqdo1NGKXmhYvWVQMBCXaFhWzAJC:KFG6aJ/Qcu8Ykv2aFhUP
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-