Overview

overview

10

Static

static

3

2024-04-24...ia.exe

windows7-x64

3

2024-04-24...ia.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-24_7e7551dce5be72531cc9a8dc6c16c204_karagany_mafia

  • Size

    326KB

  • Sample

    240424-tdqk8acg95

  • MD5

    7e7551dce5be72531cc9a8dc6c16c204

  • SHA1

    0ec9923c2553a0352970212a67a4ad87b24fffd1

  • SHA256

    2a925d1daeb8ee459e252e13ae347b1b7c3bafa19b88af39a1e830624b44068c

  • SHA512

    cccb00e14ec511fa5ec0fef96a52c261c894954227ae8b077c03237a361f6752127bfaa554c5805585aa8c3e40f27e9a0690f99401a570bce99b6981a4d8db07

  • SSDEEP

    3072:h+V2GtCbCnDl0TM87yRBNWwxnImfoP/KOBejjY6IaCDtm0zT5363kQ8Ju/:hB/USTXkLHgPitjYVmq+L

Score
10/10
gandcrabbackdoorransomware

Malware Config

Targets

    • Target

      2024-04-24_7e7551dce5be72531cc9a8dc6c16c204_karagany_mafia

    • Size

      326KB

    • MD5

      7e7551dce5be72531cc9a8dc6c16c204

    • SHA1

      0ec9923c2553a0352970212a67a4ad87b24fffd1

    • SHA256

      2a925d1daeb8ee459e252e13ae347b1b7c3bafa19b88af39a1e830624b44068c

    • SHA512

      cccb00e14ec511fa5ec0fef96a52c261c894954227ae8b077c03237a361f6752127bfaa554c5805585aa8c3e40f27e9a0690f99401a570bce99b6981a4d8db07

    • SSDEEP

      3072:h+V2GtCbCnDl0TM87yRBNWwxnImfoP/KOBejjY6IaCDtm0zT5363kQ8Ju/:hB/USTXkLHgPitjYVmq+L

    Score
    10/10
    gandcrabbackdoorransomware

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

      ransomwarebackdoorgandcrab

    • Detects Reflective DLL injection artifacts

    • Detects ransomware indicator

    • Gandcrab Payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks