General
-
Target
2024-04-22_626ce9ff3154b7e8ed52e185da75e0ab_mafia
-
Size
316KB
-
Sample
240422-v9md4sea56
-
MD5
626ce9ff3154b7e8ed52e185da75e0ab
-
SHA1
57e20a06b7b0457d5d6473e2bc213e5703581716
-
SHA256
450b2f11506b57142bea6e3e7a039066b0239aaa65909c1092c9707641a86ec9
-
SHA512
d6e9b2f975dcf04e3a869e1f343351f823eb0e83c5c24b27864533160151345de31366d6075c1b6e716a529b63385e82cee88628d8193980a180f9a8217128e6
-
SSDEEP
6144:JvE3NMO1UnseVgkV0xwvfxnhLTiusLe1740X:adM0Unsna5mut40X
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-22_626ce9ff3154b7e8ed52e185da75e0ab_mafia.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-04-22_626ce9ff3154b7e8ed52e185da75e0ab_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-22_626ce9ff3154b7e8ed52e185da75e0ab_mafia
-
Size
316KB
-
MD5
626ce9ff3154b7e8ed52e185da75e0ab
-
SHA1
57e20a06b7b0457d5d6473e2bc213e5703581716
-
SHA256
450b2f11506b57142bea6e3e7a039066b0239aaa65909c1092c9707641a86ec9
-
SHA512
d6e9b2f975dcf04e3a869e1f343351f823eb0e83c5c24b27864533160151345de31366d6075c1b6e716a529b63385e82cee88628d8193980a180f9a8217128e6
-
SSDEEP
6144:JvE3NMO1UnseVgkV0xwvfxnhLTiusLe1740X:adM0Unsna5mut40X
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-