General
-
Target
2024-04-17_777b0a4abd794a6f48d7fc83f392150a_karagany_mafia
-
Size
308KB
-
Sample
240417-xyr7bsbd66
-
MD5
777b0a4abd794a6f48d7fc83f392150a
-
SHA1
766f37c61e4b4fde429d5c01aa041d00ea2e9ff0
-
SHA256
5a8862346a024a40799ca8abab7ef2e9e89f192e75bdb62ef8c497d47314fda6
-
SHA512
2fd6946e8da3c277a5676bc47480dd382d0582bd4be76bb02bd4a21eaaf575a7821d1dba09e6863a8ee20005999dc81e312afa8de5166d32c246773a823eb089
-
SSDEEP
6144:2zL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:0DHNam62ZdKmZmuPH
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-17_777b0a4abd794a6f48d7fc83f392150a_karagany_mafia.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-17_777b0a4abd794a6f48d7fc83f392150a_karagany_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-17_777b0a4abd794a6f48d7fc83f392150a_karagany_mafia
-
Size
308KB
-
MD5
777b0a4abd794a6f48d7fc83f392150a
-
SHA1
766f37c61e4b4fde429d5c01aa041d00ea2e9ff0
-
SHA256
5a8862346a024a40799ca8abab7ef2e9e89f192e75bdb62ef8c497d47314fda6
-
SHA512
2fd6946e8da3c277a5676bc47480dd382d0582bd4be76bb02bd4a21eaaf575a7821d1dba09e6863a8ee20005999dc81e312afa8de5166d32c246773a823eb089
-
SSDEEP
6144:2zL7ShWDLVzVNam6GxI29dqG3KdYAYqTuPZp:0DHNam62ZdKmZmuPH
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-