General

  • Target

    1b7ee376c8025714b7e3f8e7611b7d9c_JaffaCakes118

  • Size

    73KB

  • Sample

    240506-jqaqesgg69

  • MD5

    1b7ee376c8025714b7e3f8e7611b7d9c

  • SHA1

    c433a6011542f97fca88caddc95a89d88e21cc9c

  • SHA256

    1c4bdbc8b762a665abcad0e1051afb1aeaa22fb275ccad053bf09503510b5cd6

  • SHA512

    0efd84d66ff5331fe5658a6e29e3849fee2b440cc2bd70a7e04665e719894c9666b6954c79b218b1683e063925c3065ce9783ebed2880528ab7655f5152ccf16

  • SSDEEP

    1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      1b7ee376c8025714b7e3f8e7611b7d9c_JaffaCakes118

    • Size

      73KB

    • MD5

      1b7ee376c8025714b7e3f8e7611b7d9c

    • SHA1

      c433a6011542f97fca88caddc95a89d88e21cc9c

    • SHA256

      1c4bdbc8b762a665abcad0e1051afb1aeaa22fb275ccad053bf09503510b5cd6

    • SHA512

      0efd84d66ff5331fe5658a6e29e3849fee2b440cc2bd70a7e04665e719894c9666b6954c79b218b1683e063925c3065ce9783ebed2880528ab7655f5152ccf16

    • SSDEEP

      1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks