General

  • Target

    2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab

  • Size

    73KB

  • Sample

    240411-w4621acg4x

  • MD5

    7013d83a9432c31b688e3be3e6a1e226

  • SHA1

    2a9ac2af8f7bb94ddf161cc26641a22832e35939

  • SHA256

    c7c44b77270734bcfd556ad36558cce7f8d86b5aab47b3277b5cbee9e35c0d3b

  • SHA512

    42fc8a4214a398ec71158f211f2300f0c9456c7d0ddde81a31c4fe21613faac5657099e9a17d1749eefd60ed819dbef476bb8300657ec0352e28e9cc963812b0

  • SSDEEP

    1536:W555555555555pmgSeGDjtQhnwmmB0yRMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r2:HMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab

    • Size

      73KB

    • MD5

      7013d83a9432c31b688e3be3e6a1e226

    • SHA1

      2a9ac2af8f7bb94ddf161cc26641a22832e35939

    • SHA256

      c7c44b77270734bcfd556ad36558cce7f8d86b5aab47b3277b5cbee9e35c0d3b

    • SHA512

      42fc8a4214a398ec71158f211f2300f0c9456c7d0ddde81a31c4fe21613faac5657099e9a17d1749eefd60ed819dbef476bb8300657ec0352e28e9cc963812b0

    • SSDEEP

      1536:W555555555555pmgSeGDjtQhnwmmB0yRMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r2:HMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks