General
-
Target
2024-04-26_fbc704ea32c631c54454a9bf0819a549_mafia
-
Size
316KB
-
Sample
240426-rfyy9sdh71
-
MD5
fbc704ea32c631c54454a9bf0819a549
-
SHA1
2f6919b7f188ea45e56b4bae89995958bf77428d
-
SHA256
0eae540e9a8eee631cd05bc0303e36b1f1a8fde9d2eac9b08f5bb01a40144763
-
SHA512
199b26ab94f54d6aa4b86f675c259424495b0f6def86a58ba833d43fad0dbc6e715d7eddaa10122f1387ea586ecfa753da9cde1392b7e27e30343ee0aac5c98e
-
SSDEEP
6144:XvdANMO1UnseVgkV0xwvfxnhLTiusLe1740A:1uM0Unsna5mut40A
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_fbc704ea32c631c54454a9bf0819a549_mafia.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-04-26_fbc704ea32c631c54454a9bf0819a549_mafia.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-26_fbc704ea32c631c54454a9bf0819a549_mafia
-
Size
316KB
-
MD5
fbc704ea32c631c54454a9bf0819a549
-
SHA1
2f6919b7f188ea45e56b4bae89995958bf77428d
-
SHA256
0eae540e9a8eee631cd05bc0303e36b1f1a8fde9d2eac9b08f5bb01a40144763
-
SHA512
199b26ab94f54d6aa4b86f675c259424495b0f6def86a58ba833d43fad0dbc6e715d7eddaa10122f1387ea586ecfa753da9cde1392b7e27e30343ee0aac5c98e
-
SSDEEP
6144:XvdANMO1UnseVgkV0xwvfxnhLTiusLe1740A:1uM0Unsna5mut40A
Score10/10-
GandCrab payload
-
Detects Reflective DLL injection artifacts
-
Detects ransomware indicator
-
Gandcrab Payload
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-