General

  • Target

    2024-05-05_76ee0acef29b3f277a703bc4d41aec88_gandcrab

  • Size

    88KB

  • MD5

    76ee0acef29b3f277a703bc4d41aec88

  • SHA1

    85b95deef5d82d70cb411612f0918017f5acb4b5

  • SHA256

    f5e7c5bb96473426f39389c86420dd06a91fe71560998ef9b5a315e566c68309

  • SHA512

    7563e3af7c8d3259600047baf2b0d2fc93231a3e56e7f2cc0a0da9e44708eb94985b528ac2e83695d00ef28013c4aa17f8f82ddb6ef0c52e0e38a97ada20e396

  • SSDEEP

    1536:lrsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:ljDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-05_76ee0acef29b3f277a703bc4d41aec88_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections