General
-
Target
2024-04-23_09918e2bced54e40e392da48a869501f_mafia
-
Size
316KB
-
Sample
240423-aqh75aab7x
-
MD5
09918e2bced54e40e392da48a869501f
-
SHA1
c34c900b1baf06b80786db21e355da47284cf109
-
SHA256
295c5e09c541f7c21ea50807425191c8399a8cd53a3940b06b0fffa1ee1ed185
-
SHA512
dd356155dbbc5ad3151ddcce92e553c0169bb8d01c41e6c7ae6e1f49e293969aafe4d5fe58c46ad714fce8837f2327ed10e303909c6f9fe4fb0253e5ee70a763
-
SSDEEP
6144:Jv/fNMO1UnseVgkV0xwvfxnhLTiusLe1740n:VlM0Unsna5mut40n
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-23_09918e2bced54e40e392da48a869501f_mafia.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-04-23_09918e2bced54e40e392da48a869501f_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-23_09918e2bced54e40e392da48a869501f_mafia
-
Size
316KB
-
MD5
09918e2bced54e40e392da48a869501f
-
SHA1
c34c900b1baf06b80786db21e355da47284cf109
-
SHA256
295c5e09c541f7c21ea50807425191c8399a8cd53a3940b06b0fffa1ee1ed185
-
SHA512
dd356155dbbc5ad3151ddcce92e553c0169bb8d01c41e6c7ae6e1f49e293969aafe4d5fe58c46ad714fce8837f2327ed10e303909c6f9fe4fb0253e5ee70a763
-
SSDEEP
6144:Jv/fNMO1UnseVgkV0xwvfxnhLTiusLe1740n:VlM0Unsna5mut40n
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-