General
-
Target
2024-04-23_d62dcf4d481bf7c0114a0ee18026dfed_mafia
-
Size
316KB
-
Sample
240423-a7bjlsae2s
-
MD5
d62dcf4d481bf7c0114a0ee18026dfed
-
SHA1
ffc9994b90cd460868f12a98b0d8c95a746ca18f
-
SHA256
5e58359f9dd0e78ceae5a29ea36183d8e5e79b79cdeecb1eead9ca5a5da7fdf3
-
SHA512
908d4760349397bb90df30a3f6b69e9d20ec54fc1a4536dc09e7e62028093dc62f65ff72ae215d0175cd7940f664898729acffe1875931c9a3ccefbffcfe6d00
-
SSDEEP
6144:JvEZNMO1UnseVgkV0xwvfxnhLTiusLe17403:a7M0Unsna5mut403
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-23_d62dcf4d481bf7c0114a0ee18026dfed_mafia.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-23_d62dcf4d481bf7c0114a0ee18026dfed_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-23_d62dcf4d481bf7c0114a0ee18026dfed_mafia
-
Size
316KB
-
MD5
d62dcf4d481bf7c0114a0ee18026dfed
-
SHA1
ffc9994b90cd460868f12a98b0d8c95a746ca18f
-
SHA256
5e58359f9dd0e78ceae5a29ea36183d8e5e79b79cdeecb1eead9ca5a5da7fdf3
-
SHA512
908d4760349397bb90df30a3f6b69e9d20ec54fc1a4536dc09e7e62028093dc62f65ff72ae215d0175cd7940f664898729acffe1875931c9a3ccefbffcfe6d00
-
SSDEEP
6144:JvEZNMO1UnseVgkV0xwvfxnhLTiusLe17403:a7M0Unsna5mut403
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-