General

  • Target

    2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab

  • Size

    73KB

  • Sample

    240503-efdl4sge79

  • MD5

    b9b1fc8ad33d05fca2555415800ed139

  • SHA1

    867644ee02ec786ea003b762afbbacab73ebd7a3

  • SHA256

    00467810523686409ce64bae3bd9c12d265bd4e3bdca111af236721b527cbe7b

  • SHA512

    e91b57fc4cd1a78ea351eac3f9acbd9523197997a5e17fb9a186593669ed3190fd3d19469c6f8f25a8e57a452abb1dd8af64112bd7cfd60000f024b8f2d9f5e6

  • SSDEEP

    1536:u55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:kMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab

    • Size

      73KB

    • MD5

      b9b1fc8ad33d05fca2555415800ed139

    • SHA1

      867644ee02ec786ea003b762afbbacab73ebd7a3

    • SHA256

      00467810523686409ce64bae3bd9c12d265bd4e3bdca111af236721b527cbe7b

    • SHA512

      e91b57fc4cd1a78ea351eac3f9acbd9523197997a5e17fb9a186593669ed3190fd3d19469c6f8f25a8e57a452abb1dd8af64112bd7cfd60000f024b8f2d9f5e6

    • SSDEEP

      1536:u55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:kMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks