General

  • Target

    2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab

  • Size

    74KB

  • Sample

    240504-kyhxfacb32

  • MD5

    ae0615f27f7a8cb0b13969f9b7532ec3

  • SHA1

    b836ca1d2d9d07a32e93d29630d39ed5fc14a58d

  • SHA256

    c46f636b633c0e369fc9682b02e42cf1bfb3227bc9e632a4f9a1d1c2a3fca9f7

  • SHA512

    65735db934a7184d7ca0242539816134f4399161d90be730d2da669f8a4f563802f49030dc3951d380a682836a8449763f76f5fdc5f3d3e96d11c12f4bfe89c7

  • SSDEEP

    1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5O

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab

    • Size

      74KB

    • MD5

      ae0615f27f7a8cb0b13969f9b7532ec3

    • SHA1

      b836ca1d2d9d07a32e93d29630d39ed5fc14a58d

    • SHA256

      c46f636b633c0e369fc9682b02e42cf1bfb3227bc9e632a4f9a1d1c2a3fca9f7

    • SHA512

      65735db934a7184d7ca0242539816134f4399161d90be730d2da669f8a4f563802f49030dc3951d380a682836a8449763f76f5fdc5f3d3e96d11c12f4bfe89c7

    • SSDEEP

      1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5O

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks