General
-
Target
2024-04-23_ef96ef7dd04c4383617574d83aae910a_mafia
-
Size
316KB
-
Sample
240423-fnlhcsdd5w
-
MD5
ef96ef7dd04c4383617574d83aae910a
-
SHA1
1e846c580fee5d5c17edad9e34fcec575c3bba71
-
SHA256
b104d8195ca04fc2cd60ae3bc68968aba830633d7ce76c1916435fa494922ac1
-
SHA512
b5b1d6d6f0ff21e4a05f2f0d23c6ec41d70eecf8d68726ac6da9f019d9609670db1fb95790235edfd10d818227ad857a84d61f833fc96699a37d03134d6fe872
-
SSDEEP
6144:rvmCNMO1UnseVgkV0xwvfxnhLTiusLe1740c:68M0Unsna5mut40c
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-23_ef96ef7dd04c4383617574d83aae910a_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-23_ef96ef7dd04c4383617574d83aae910a_mafia.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-23_ef96ef7dd04c4383617574d83aae910a_mafia
-
Size
316KB
-
MD5
ef96ef7dd04c4383617574d83aae910a
-
SHA1
1e846c580fee5d5c17edad9e34fcec575c3bba71
-
SHA256
b104d8195ca04fc2cd60ae3bc68968aba830633d7ce76c1916435fa494922ac1
-
SHA512
b5b1d6d6f0ff21e4a05f2f0d23c6ec41d70eecf8d68726ac6da9f019d9609670db1fb95790235edfd10d818227ad857a84d61f833fc96699a37d03134d6fe872
-
SSDEEP
6144:rvmCNMO1UnseVgkV0xwvfxnhLTiusLe1740c:68M0Unsna5mut40c
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-