General
-
Target
2024-05-03_5a55b6a68d1c5ce888844cb5155d70d3_gandcrab
-
Size
83KB
-
Sample
240503-d6s9taea8s
-
MD5
5a55b6a68d1c5ce888844cb5155d70d3
-
SHA1
30f82ae2dd46a894ab024320003ec20976d947f4
-
SHA256
8e3302d40a4aca2870cd124f85fb5bee895724a90c0c0f7f68127b6902b06302
-
SHA512
c5dd58957780a0fa750db5cf41da0a32280e3d1001592b518a28027e5e360e1bc674f52d1a0623f51493f4e61f6a9dcce6fc7d2a18d34129bb41926726eb6d44
-
SSDEEP
1536:N55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:lMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Behavioral task
behavioral1
Sample
2024-05-03_5a55b6a68d1c5ce888844cb5155d70d3_gandcrab.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-03_5a55b6a68d1c5ce888844cb5155d70d3_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-03_5a55b6a68d1c5ce888844cb5155d70d3_gandcrab
-
Size
83KB
-
MD5
5a55b6a68d1c5ce888844cb5155d70d3
-
SHA1
30f82ae2dd46a894ab024320003ec20976d947f4
-
SHA256
8e3302d40a4aca2870cd124f85fb5bee895724a90c0c0f7f68127b6902b06302
-
SHA512
c5dd58957780a0fa750db5cf41da0a32280e3d1001592b518a28027e5e360e1bc674f52d1a0623f51493f4e61f6a9dcce6fc7d2a18d34129bb41926726eb6d44
-
SSDEEP
1536:N55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:lMSjOnrmBTMqqDL2/mr3IdE8we0Avu5l
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-