General
-
Target
2024-04-26_f1ce7205769f1f57d304b08ede330997_mafia
-
Size
316KB
-
Sample
240426-nsjhkaff73
-
MD5
f1ce7205769f1f57d304b08ede330997
-
SHA1
58ead68e4f0bdd83020a864f68e4682ef1ff211c
-
SHA256
e36fc1bba16baafa5e9fb9ade0a45698d22037f3dda70f00a05bf1e111b09cdf
-
SHA512
7a5d410f44ad068653e3eb8dc2aff2a2b6343a1714045ac441cda4978e6c6e423c426bf842fecb5d7b11460e7f0d17c44b62dc39d6e4f73d3703bbf141367fcd
-
SSDEEP
6144:YvE3NMO1UnseVgkV0xwvfxnhLTiusLe1740X:3dM0Unsna5mut40X
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_f1ce7205769f1f57d304b08ede330997_mafia.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-26_f1ce7205769f1f57d304b08ede330997_mafia.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-26_f1ce7205769f1f57d304b08ede330997_mafia
-
Size
316KB
-
MD5
f1ce7205769f1f57d304b08ede330997
-
SHA1
58ead68e4f0bdd83020a864f68e4682ef1ff211c
-
SHA256
e36fc1bba16baafa5e9fb9ade0a45698d22037f3dda70f00a05bf1e111b09cdf
-
SHA512
7a5d410f44ad068653e3eb8dc2aff2a2b6343a1714045ac441cda4978e6c6e423c426bf842fecb5d7b11460e7f0d17c44b62dc39d6e4f73d3703bbf141367fcd
-
SSDEEP
6144:YvE3NMO1UnseVgkV0xwvfxnhLTiusLe1740X:3dM0Unsna5mut40X
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-