General
-
Target
2024-04-22_c319342f732f592865dab903e0b57bfc_mafia
-
Size
316KB
-
Sample
240422-yc4hxafc46
-
MD5
c319342f732f592865dab903e0b57bfc
-
SHA1
edee28f1db3cdff3be67abbd0c23ee8ca8cb7527
-
SHA256
eda071e929682b907b1bcf10ae38b148610df21d61e205c75bd41d0fa766b116
-
SHA512
a841c083c9793cb615d76184834d226554ae99b1131f04d1b2dab58f453b780c701e9682527dfbf45d6bc3137c291aedb1ef0c15c2945bb1e1e6b5d71781142b
-
SSDEEP
6144:JvdANMO1UnseVgkV0xwvfxnhLTiusLe1740b:LuM0Unsna5mut40b
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-22_c319342f732f592865dab903e0b57bfc_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-22_c319342f732f592865dab903e0b57bfc_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-22_c319342f732f592865dab903e0b57bfc_mafia
-
Size
316KB
-
MD5
c319342f732f592865dab903e0b57bfc
-
SHA1
edee28f1db3cdff3be67abbd0c23ee8ca8cb7527
-
SHA256
eda071e929682b907b1bcf10ae38b148610df21d61e205c75bd41d0fa766b116
-
SHA512
a841c083c9793cb615d76184834d226554ae99b1131f04d1b2dab58f453b780c701e9682527dfbf45d6bc3137c291aedb1ef0c15c2945bb1e1e6b5d71781142b
-
SSDEEP
6144:JvdANMO1UnseVgkV0xwvfxnhLTiusLe1740b:LuM0Unsna5mut40b
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-