General
-
Target
2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab
-
Size
74KB
-
Sample
240504-kyhxfacb32
-
MD5
ae0615f27f7a8cb0b13969f9b7532ec3
-
SHA1
b836ca1d2d9d07a32e93d29630d39ed5fc14a58d
-
SHA256
c46f636b633c0e369fc9682b02e42cf1bfb3227bc9e632a4f9a1d1c2a3fca9f7
-
SHA512
65735db934a7184d7ca0242539816134f4399161d90be730d2da669f8a4f563802f49030dc3951d380a682836a8449763f76f5fdc5f3d3e96d11c12f4bfe89c7
-
SSDEEP
1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Behavioral task
behavioral1
Sample
2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-04_ae0615f27f7a8cb0b13969f9b7532ec3_gandcrab
-
Size
74KB
-
MD5
ae0615f27f7a8cb0b13969f9b7532ec3
-
SHA1
b836ca1d2d9d07a32e93d29630d39ed5fc14a58d
-
SHA256
c46f636b633c0e369fc9682b02e42cf1bfb3227bc9e632a4f9a1d1c2a3fca9f7
-
SHA512
65735db934a7184d7ca0242539816134f4399161d90be730d2da669f8a4f563802f49030dc3951d380a682836a8449763f76f5fdc5f3d3e96d11c12f4bfe89c7
-
SSDEEP
1536:k55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:2MSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-