General
-
Target
2024-05-04_d16ab909b009b854f23537ec189ffde2_gandcrab
-
Size
73KB
-
Sample
240504-fndgragg76
-
MD5
d16ab909b009b854f23537ec189ffde2
-
SHA1
b34409bbad1ccc052af5381ce6d2a1a1a08f8e18
-
SHA256
ebb9824adbb14b422461693e1d5152483291f095596bc8504fdc2e558fd78bf4
-
SHA512
6e7313bf2a748b462d18d5168b8c7f32bfd8484691fb316cffb43da9c22fd0171cd0ef82a114337bf4893809319c1e1b1ea7e46d16031f0fccadd3407b406f93
-
SSDEEP
1536:0555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:xMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-05-04_d16ab909b009b854f23537ec189ffde2_gandcrab.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-04_d16ab909b009b854f23537ec189ffde2_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-04_d16ab909b009b854f23537ec189ffde2_gandcrab
-
Size
73KB
-
MD5
d16ab909b009b854f23537ec189ffde2
-
SHA1
b34409bbad1ccc052af5381ce6d2a1a1a08f8e18
-
SHA256
ebb9824adbb14b422461693e1d5152483291f095596bc8504fdc2e558fd78bf4
-
SHA512
6e7313bf2a748b462d18d5168b8c7f32bfd8484691fb316cffb43da9c22fd0171cd0ef82a114337bf4893809319c1e1b1ea7e46d16031f0fccadd3407b406f93
-
SSDEEP
1536:0555555555555pmgSeGDjtQhnwmmB0yJMqqU+2bbbAV2/S2mr3IdE8mne0Avu5ry:xMSjOnrmBxMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-