General
-
Target
2024-04-22_e56494bb2c537883bc8ca320079a0eee_mafia
-
Size
316KB
-
Sample
240422-3fqhnshf75
-
MD5
e56494bb2c537883bc8ca320079a0eee
-
SHA1
641bb79da7c99fe5c06d68075350a4badeb9dc62
-
SHA256
dae5b23ed7c4549c4ac6afefadf2e657ac7c375ad929baf46836ebbf0e900779
-
SHA512
d87e23e328d677a3f962f68cd34e78870c991ef8beceed5ca87d6fe55efb99d0bddaf44ac33a630aebdb0083caca67b1c7579489b95c22aaf8a335b4306fb473
-
SSDEEP
6144:JvkA9MO1UnseVgkV0xwvfxnhLTiusLe1740m:GmM0Unsna5mut40m
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-22_e56494bb2c537883bc8ca320079a0eee_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-22_e56494bb2c537883bc8ca320079a0eee_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-22_e56494bb2c537883bc8ca320079a0eee_mafia
-
Size
316KB
-
MD5
e56494bb2c537883bc8ca320079a0eee
-
SHA1
641bb79da7c99fe5c06d68075350a4badeb9dc62
-
SHA256
dae5b23ed7c4549c4ac6afefadf2e657ac7c375ad929baf46836ebbf0e900779
-
SHA512
d87e23e328d677a3f962f68cd34e78870c991ef8beceed5ca87d6fe55efb99d0bddaf44ac33a630aebdb0083caca67b1c7579489b95c22aaf8a335b4306fb473
-
SSDEEP
6144:JvkA9MO1UnseVgkV0xwvfxnhLTiusLe1740m:GmM0Unsna5mut40m
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-