General
-
Target
2024-04-19_3206ea7af0c0b57e0ab6810beb9f8d8d_gandcrab
-
Size
83KB
-
Sample
240419-d7pm1sgf5t
-
MD5
3206ea7af0c0b57e0ab6810beb9f8d8d
-
SHA1
2d0ccd8d3efa8d6a1a9a22a51dbcc6c624a1bccc
-
SHA256
66baea97d453141a4ed5f7d8f9f8a91b23022ac6f0a7cd7e4bd6d15bebae6a78
-
SHA512
c72b6cf93a50b167ba1f38977bce24eaa5cadd03defd066393bded8431d6cc60a8813bcf793f9c25734037d08b2cabc7fe5eb3654673dd50865754d98183ee50
-
SSDEEP
1536:b55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:nMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Behavioral task
behavioral1
Sample
2024-04-19_3206ea7af0c0b57e0ab6810beb9f8d8d_gandcrab.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
2024-04-19_3206ea7af0c0b57e0ab6810beb9f8d8d_gandcrab.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-04-19_3206ea7af0c0b57e0ab6810beb9f8d8d_gandcrab
-
Size
83KB
-
MD5
3206ea7af0c0b57e0ab6810beb9f8d8d
-
SHA1
2d0ccd8d3efa8d6a1a9a22a51dbcc6c624a1bccc
-
SHA256
66baea97d453141a4ed5f7d8f9f8a91b23022ac6f0a7cd7e4bd6d15bebae6a78
-
SHA512
c72b6cf93a50b167ba1f38977bce24eaa5cadd03defd066393bded8431d6cc60a8813bcf793f9c25734037d08b2cabc7fe5eb3654673dd50865754d98183ee50
-
SSDEEP
1536:b55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:nMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-