General
-
Target
2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab
-
Size
73KB
-
Sample
240411-w4621acg4x
-
MD5
7013d83a9432c31b688e3be3e6a1e226
-
SHA1
2a9ac2af8f7bb94ddf161cc26641a22832e35939
-
SHA256
c7c44b77270734bcfd556ad36558cce7f8d86b5aab47b3277b5cbee9e35c0d3b
-
SHA512
42fc8a4214a398ec71158f211f2300f0c9456c7d0ddde81a31c4fe21613faac5657099e9a17d1749eefd60ed819dbef476bb8300657ec0352e28e9cc963812b0
-
SSDEEP
1536:W555555555555pmgSeGDjtQhnwmmB0yRMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r2:HMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-04-11_7013d83a9432c31b688e3be3e6a1e226_gandcrab
-
Size
73KB
-
MD5
7013d83a9432c31b688e3be3e6a1e226
-
SHA1
2a9ac2af8f7bb94ddf161cc26641a22832e35939
-
SHA256
c7c44b77270734bcfd556ad36558cce7f8d86b5aab47b3277b5cbee9e35c0d3b
-
SHA512
42fc8a4214a398ec71158f211f2300f0c9456c7d0ddde81a31c4fe21613faac5657099e9a17d1749eefd60ed819dbef476bb8300657ec0352e28e9cc963812b0
-
SSDEEP
1536:W555555555555pmgSeGDjtQhnwmmB0yRMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r2:HMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-