General
-
Target
2024-03-31_d46f0e7031753a64a49afa80a0736bc3_karagany_mafia
-
Size
308KB
-
Sample
240331-2lbq2aef36
-
MD5
d46f0e7031753a64a49afa80a0736bc3
-
SHA1
cbf789dc776a6c48974a13ba1339cec4293ad4a6
-
SHA256
c78ee8e48d2bd6a59660313278017afbb18387a0141a25d46570a56fa9692b9c
-
SHA512
f4eb404f8619258d56ee25528340c9b54928ca87e4a0a23a15c8fb608bed1a9fdef847930b5d234e95145b11e0284539cb39304893a27aa1601fed6425894849
-
SSDEEP
6144:3zL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:NDHNam62ZdKmZmuPH
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-31_d46f0e7031753a64a49afa80a0736bc3_karagany_mafia.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-03-31_d46f0e7031753a64a49afa80a0736bc3_karagany_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-31_d46f0e7031753a64a49afa80a0736bc3_karagany_mafia
-
Size
308KB
-
MD5
d46f0e7031753a64a49afa80a0736bc3
-
SHA1
cbf789dc776a6c48974a13ba1339cec4293ad4a6
-
SHA256
c78ee8e48d2bd6a59660313278017afbb18387a0141a25d46570a56fa9692b9c
-
SHA512
f4eb404f8619258d56ee25528340c9b54928ca87e4a0a23a15c8fb608bed1a9fdef847930b5d234e95145b11e0284539cb39304893a27aa1601fed6425894849
-
SSDEEP
6144:3zL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:NDHNam62ZdKmZmuPH
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-