General
-
Target
2024-05-04_2dbb252b823de6e03dc9c55f806818a3_gandcrab
-
Size
73KB
-
Sample
240504-e3txlsdb5w
-
MD5
2dbb252b823de6e03dc9c55f806818a3
-
SHA1
e22b53a2d3e89ce39243b23fa39b3d98a8b474b2
-
SHA256
fe0605f92a011ddfbb359b0048f3f64555248de100a5ef36eb2d8cdd983dac88
-
SHA512
5dbc925fd165238f306786c4dd0410c508808e51aa002ad8f2f8d642ea129e93844db09206b635caa2c2a2de2f1b77b107b854cb7b6f3bee312702fa817f658d
-
SSDEEP
1536:z555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:0MSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-05-04_2dbb252b823de6e03dc9c55f806818a3_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-04_2dbb252b823de6e03dc9c55f806818a3_gandcrab.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-04_2dbb252b823de6e03dc9c55f806818a3_gandcrab
-
Size
73KB
-
MD5
2dbb252b823de6e03dc9c55f806818a3
-
SHA1
e22b53a2d3e89ce39243b23fa39b3d98a8b474b2
-
SHA256
fe0605f92a011ddfbb359b0048f3f64555248de100a5ef36eb2d8cdd983dac88
-
SHA512
5dbc925fd165238f306786c4dd0410c508808e51aa002ad8f2f8d642ea129e93844db09206b635caa2c2a2de2f1b77b107b854cb7b6f3bee312702fa817f658d
-
SSDEEP
1536:z555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:0MSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-