General
-
Target
2024-03-31_566b7fe27a49c8dc5fe9d37485e8e5d2_karagany_mafia
-
Size
250KB
-
Sample
240331-1dzbpacg5w
-
MD5
566b7fe27a49c8dc5fe9d37485e8e5d2
-
SHA1
89aba28d473520cdf20088a38309c536c8d9491c
-
SHA256
7e4f686ac2b4194ce5b50b5d673d77fb1364f638b2cf281b6ef1615e3fa28d7a
-
SHA512
d6191423ab3a1dbceb6cb4874eb713aed4da3e96571e815f24ae9ba9a9957cf8556984ef2414067d86d8e442ec63f40bf9b3f061f79f62ea2ebf7470f205b4b9
-
SSDEEP
3072:l/yK5d0Gj0+nY3uEBLvBNfdUR2/qFnB8o2+vU3WuvIBuj00nReaXkuSQ7cdOd3:l/y20Gj0r+EBFrkvlU3RvIUDOIN
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-31_566b7fe27a49c8dc5fe9d37485e8e5d2_karagany_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-31_566b7fe27a49c8dc5fe9d37485e8e5d2_karagany_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-31_566b7fe27a49c8dc5fe9d37485e8e5d2_karagany_mafia
-
Size
250KB
-
MD5
566b7fe27a49c8dc5fe9d37485e8e5d2
-
SHA1
89aba28d473520cdf20088a38309c536c8d9491c
-
SHA256
7e4f686ac2b4194ce5b50b5d673d77fb1364f638b2cf281b6ef1615e3fa28d7a
-
SHA512
d6191423ab3a1dbceb6cb4874eb713aed4da3e96571e815f24ae9ba9a9957cf8556984ef2414067d86d8e442ec63f40bf9b3f061f79f62ea2ebf7470f205b4b9
-
SSDEEP
3072:l/yK5d0Gj0+nY3uEBLvBNfdUR2/qFnB8o2+vU3WuvIBuj00nReaXkuSQ7cdOd3:l/y20Gj0r+EBFrkvlU3RvIUDOIN
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-