Overview

overview

10

Static

static

3

2024-04-22...ia.exe

windows7-x64

3

2024-04-22...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-22_cd822240dc0171e3eeaaec4c521b52fc_karagany_mafia

  • Size

    326KB

  • Sample

    240422-qfgvbaca2s

  • MD5

    cd822240dc0171e3eeaaec4c521b52fc

  • SHA1

    8ab312c9bbb85a780953828e48e9c2cd70c05008

  • SHA256

    85cb4787d172c5614a9fd1611ec20296f22cd49179985471874c67da6792dc9a

  • SHA512

    214b2025a5d301aa92d996a67f7059f75e110fe01fe06852cb81d9aeb377564319a0e9d49a73adb678b6e5a790e47f7a00629b222c71c14cebfa2992c0299132

  • SSDEEP

    3072:S+V2GtCb0nDlGTM87yRBNWwxnImfoP/KOBejjY6IaCDtm0zT5363kQ8JuO:SB/moTXkLHgPitjYVmq+K

Score
10/10
gandcrabbackdoorransomware

Malware Config

Targets

    • Target

      2024-04-22_cd822240dc0171e3eeaaec4c521b52fc_karagany_mafia

    • Size

      326KB

    • MD5

      cd822240dc0171e3eeaaec4c521b52fc

    • SHA1

      8ab312c9bbb85a780953828e48e9c2cd70c05008

    • SHA256

      85cb4787d172c5614a9fd1611ec20296f22cd49179985471874c67da6792dc9a

    • SHA512

      214b2025a5d301aa92d996a67f7059f75e110fe01fe06852cb81d9aeb377564319a0e9d49a73adb678b6e5a790e47f7a00629b222c71c14cebfa2992c0299132

    • SSDEEP

      3072:S+V2GtCb0nDlGTM87yRBNWwxnImfoP/KOBejjY6IaCDtm0zT5363kQ8JuO:SB/moTXkLHgPitjYVmq+K

    Score
    10/10
    gandcrabbackdoorransomware

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

      ransomwarebackdoorgandcrab

    • Detects Reflective DLL injection artifacts

    • Detects ransomware indicator

    • Gandcrab Payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks