General
-
Target
2024-04-27_7d77b8e37148915f5d5e41da269cd3e4_gandcrab
-
Size
88KB
-
Sample
240427-2hwa9sad51
-
MD5
7d77b8e37148915f5d5e41da269cd3e4
-
SHA1
6424aaef864476b66a00f9eb5fb7ff85df765458
-
SHA256
2e6e680a3acbf36eec16d3df88798c98a4905f11799993321fe02c0c2c77a1a6
-
SHA512
ed0f5f37886e04daff79fa44df5cd1a5a1debbd74772722b8a6988264a62bb34997470aa3b1c5885507f75810eed70cda4d6c89063b6e73e091327ee7e59798d
-
SSDEEP
1536:UrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:UjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Behavioral task
behavioral1
Sample
2024-04-27_7d77b8e37148915f5d5e41da269cd3e4_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-27_7d77b8e37148915f5d5e41da269cd3e4_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-04-27_7d77b8e37148915f5d5e41da269cd3e4_gandcrab
-
Size
88KB
-
MD5
7d77b8e37148915f5d5e41da269cd3e4
-
SHA1
6424aaef864476b66a00f9eb5fb7ff85df765458
-
SHA256
2e6e680a3acbf36eec16d3df88798c98a4905f11799993321fe02c0c2c77a1a6
-
SHA512
ed0f5f37886e04daff79fa44df5cd1a5a1debbd74772722b8a6988264a62bb34997470aa3b1c5885507f75810eed70cda4d6c89063b6e73e091327ee7e59798d
-
SSDEEP
1536:UrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:UjDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-