General
-
Target
2024-04-18_a71c91148cfb4f1e0dd1a0d1cb322014_gandcrab
-
Size
88KB
-
Sample
240418-szjt5aaa4x
-
MD5
a71c91148cfb4f1e0dd1a0d1cb322014
-
SHA1
be2257486711d071db3b4dffaa7113cc7c7f286a
-
SHA256
92492275aa12feafefea92261158331a0d6194f159ba85375062e7646bc1f25e
-
SHA512
35d23b483afc60f7906029c0967ad27b7df621749bd2ac5d99eff59aa457c5cb6f440759d724b848ef389c479604f8ef825d71c835529aa4b232d09ee76c1bae
-
SSDEEP
1536:HrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:HjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Behavioral task
behavioral1
Sample
2024-04-18_a71c91148cfb4f1e0dd1a0d1cb322014_gandcrab.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-04-18_a71c91148cfb4f1e0dd1a0d1cb322014_gandcrab.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-04-18_a71c91148cfb4f1e0dd1a0d1cb322014_gandcrab
-
Size
88KB
-
MD5
a71c91148cfb4f1e0dd1a0d1cb322014
-
SHA1
be2257486711d071db3b4dffaa7113cc7c7f286a
-
SHA256
92492275aa12feafefea92261158331a0d6194f159ba85375062e7646bc1f25e
-
SHA512
35d23b483afc60f7906029c0967ad27b7df621749bd2ac5d99eff59aa457c5cb6f440759d724b848ef389c479604f8ef825d71c835529aa4b232d09ee76c1bae
-
SSDEEP
1536:HrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:HjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-