General
-
Target
2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab
-
Size
73KB
-
Sample
240503-efdl4sge79
-
MD5
b9b1fc8ad33d05fca2555415800ed139
-
SHA1
867644ee02ec786ea003b762afbbacab73ebd7a3
-
SHA256
00467810523686409ce64bae3bd9c12d265bd4e3bdca111af236721b527cbe7b
-
SHA512
e91b57fc4cd1a78ea351eac3f9acbd9523197997a5e17fb9a186593669ed3190fd3d19469c6f8f25a8e57a452abb1dd8af64112bd7cfd60000f024b8f2d9f5e6
-
SSDEEP
1536:u55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:kMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-03_b9b1fc8ad33d05fca2555415800ed139_gandcrab
-
Size
73KB
-
MD5
b9b1fc8ad33d05fca2555415800ed139
-
SHA1
867644ee02ec786ea003b762afbbacab73ebd7a3
-
SHA256
00467810523686409ce64bae3bd9c12d265bd4e3bdca111af236721b527cbe7b
-
SHA512
e91b57fc4cd1a78ea351eac3f9acbd9523197997a5e17fb9a186593669ed3190fd3d19469c6f8f25a8e57a452abb1dd8af64112bd7cfd60000f024b8f2d9f5e6
-
SSDEEP
1536:u55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:kMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-