General
-
Target
2024-04-19_619df595f7584258e611cfeff902520a_gandcrab
-
Size
83KB
-
Sample
240419-rz3rkaeh22
-
MD5
619df595f7584258e611cfeff902520a
-
SHA1
6697edc139a5d2fc8a46b7d520848ab1d44ee85c
-
SHA256
bf604af6e152e85afb48c3c1473627f23c9f7f54f6c76d87ec6696cfe046d7a5
-
SHA512
db5ca5c4eefb412d71ac2c51d985e7776f808fbef8d83c9e2508f0f317ecc6434a77b9063342246fe9861670120ac477c38d7a8977128ae06a263c4836b26052
-
SSDEEP
1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Behavioral task
behavioral1
Sample
2024-04-19_619df595f7584258e611cfeff902520a_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-19_619df595f7584258e611cfeff902520a_gandcrab.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-04-19_619df595f7584258e611cfeff902520a_gandcrab
-
Size
83KB
-
MD5
619df595f7584258e611cfeff902520a
-
SHA1
6697edc139a5d2fc8a46b7d520848ab1d44ee85c
-
SHA256
bf604af6e152e85afb48c3c1473627f23c9f7f54f6c76d87ec6696cfe046d7a5
-
SHA512
db5ca5c4eefb412d71ac2c51d985e7776f808fbef8d83c9e2508f0f317ecc6434a77b9063342246fe9861670120ac477c38d7a8977128ae06a263c4836b26052
-
SSDEEP
1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-