General

  • Target

    1b18a40628e95aad1602355d43e8319a_JaffaCakes118

  • Size

    73KB

  • MD5

    1b18a40628e95aad1602355d43e8319a

  • SHA1

    5a4571dbaca3e322d3c6753f93b0ea208f51c9b5

  • SHA256

    63d2a4c86f628033827009e428a8b5672c7bd265eec79547d6d1a6ed010cf72e

  • SHA512

    018ac251d4039a48d55bd6007ccf3e9566b2b9266d0736238736739fa39d4c4d65319bd5e5ad0044dec09ee5f70e2b749d7e77cb0ec65bc910a85aa1c5311d4e

  • SSDEEP

    1536:s55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:OMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1b18a40628e95aad1602355d43e8319a_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections