General
-
Target
2024-05-03_5fd3f66097aef0306d3bd6ef2ed90951_gandcrab
-
Size
73KB
-
Sample
240503-e73qbahc96
-
MD5
5fd3f66097aef0306d3bd6ef2ed90951
-
SHA1
180ee4e765e8e5120f7de60841a037eb1dd042fd
-
SHA256
46ef72b7f3e109e2c9bf2061c13c97838df3cc9c410e7bd4d7c4e3a5c84221bb
-
SHA512
c43f279c00d69f046fad71ac23df331373f0f81e48057e6e8423cf2c511bf0e554115c332ad2833dc4c88828f6279c1f1411866a7b41958c3e3449def5f559b6
-
SSDEEP
1536:r555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:sMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-05-03_5fd3f66097aef0306d3bd6ef2ed90951_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-03_5fd3f66097aef0306d3bd6ef2ed90951_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-03_5fd3f66097aef0306d3bd6ef2ed90951_gandcrab
-
Size
73KB
-
MD5
5fd3f66097aef0306d3bd6ef2ed90951
-
SHA1
180ee4e765e8e5120f7de60841a037eb1dd042fd
-
SHA256
46ef72b7f3e109e2c9bf2061c13c97838df3cc9c410e7bd4d7c4e3a5c84221bb
-
SHA512
c43f279c00d69f046fad71ac23df331373f0f81e48057e6e8423cf2c511bf0e554115c332ad2833dc4c88828f6279c1f1411866a7b41958c3e3449def5f559b6
-
SSDEEP
1536:r555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:sMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-