General
-
Target
2024-04-23_a7dfcfb6f4c2c441e0db0413e3f89290_mafia
-
Size
316KB
-
Sample
240423-fghswsdc68
-
MD5
a7dfcfb6f4c2c441e0db0413e3f89290
-
SHA1
2ed00344ce6093b73b57ff92eba5f4d4554982fa
-
SHA256
b2848e4abf828b4ab72db434d4cdeb2986b63aee14a45c0814699f444081604b
-
SHA512
17b610ef0ee33292ed54ab05b11ad06095fe8bddf2add81043822da5d517ce359a60a0510696954d334aada737897670ddb766253aa19e92d1c960768028ad75
-
SSDEEP
6144:AvmCNMO1UnseVgkV0xwvfxnhLTiusLe1740c:B8M0Unsna5mut40c
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-23_a7dfcfb6f4c2c441e0db0413e3f89290_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-23_a7dfcfb6f4c2c441e0db0413e3f89290_mafia.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-23_a7dfcfb6f4c2c441e0db0413e3f89290_mafia
-
Size
316KB
-
MD5
a7dfcfb6f4c2c441e0db0413e3f89290
-
SHA1
2ed00344ce6093b73b57ff92eba5f4d4554982fa
-
SHA256
b2848e4abf828b4ab72db434d4cdeb2986b63aee14a45c0814699f444081604b
-
SHA512
17b610ef0ee33292ed54ab05b11ad06095fe8bddf2add81043822da5d517ce359a60a0510696954d334aada737897670ddb766253aa19e92d1c960768028ad75
-
SSDEEP
6144:AvmCNMO1UnseVgkV0xwvfxnhLTiusLe1740c:B8M0Unsna5mut40c
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-