General
-
Target
2024-04-22_55b0f0fb0ebbf0458a6b4876e03a819d_mafia
-
Size
316KB
-
Sample
240422-sy44nsda5x
-
MD5
55b0f0fb0ebbf0458a6b4876e03a819d
-
SHA1
c3dc7fc563e2a9aeb12676430e2c239060071039
-
SHA256
174684d4da95e8a022e5a9d1725546c7fd3214246e22477697d25491599464a4
-
SHA512
75c347b1473d0c53c636520f5e685097bbba9717b9776a49a6e3ca64706d48d9a7f324822388aef22b9b9337ea854b4e5f24c1bf7441ef9577d3b410c2259eb6
-
SSDEEP
6144:Jv+3NMO1UnseVgkV0xwvfxnhLTiusLe1740Y:EdM0Unsna5mut40Y
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-22_55b0f0fb0ebbf0458a6b4876e03a819d_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-22_55b0f0fb0ebbf0458a6b4876e03a819d_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-22_55b0f0fb0ebbf0458a6b4876e03a819d_mafia
-
Size
316KB
-
MD5
55b0f0fb0ebbf0458a6b4876e03a819d
-
SHA1
c3dc7fc563e2a9aeb12676430e2c239060071039
-
SHA256
174684d4da95e8a022e5a9d1725546c7fd3214246e22477697d25491599464a4
-
SHA512
75c347b1473d0c53c636520f5e685097bbba9717b9776a49a6e3ca64706d48d9a7f324822388aef22b9b9337ea854b4e5f24c1bf7441ef9577d3b410c2259eb6
-
SSDEEP
6144:Jv+3NMO1UnseVgkV0xwvfxnhLTiusLe1740Y:EdM0Unsna5mut40Y
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-