General
-
Target
2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab
-
Size
88KB
-
Sample
240507-b18q7sfe78
-
MD5
b8dbd7db19916a8d2ad553e5141a9cad
-
SHA1
9ef6db91d812b607989be4a14bb6075ed070d0be
-
SHA256
e9e77af41becb9d652bf019df23aaea41dcb86640d3a9e05f514a7af3de8677b
-
SHA512
c1933b03bfee3eb84912237dcbfe02dbf3600cd40d6b21230cf4c26f640c9c066d5f026f6b9d3dfdabfa1fa00be233430d6030cfa9968f6002e37e2769d177f1
-
SSDEEP
1536:8rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:8jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Behavioral task
behavioral1
Sample
2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab
-
Size
88KB
-
MD5
b8dbd7db19916a8d2ad553e5141a9cad
-
SHA1
9ef6db91d812b607989be4a14bb6075ed070d0be
-
SHA256
e9e77af41becb9d652bf019df23aaea41dcb86640d3a9e05f514a7af3de8677b
-
SHA512
c1933b03bfee3eb84912237dcbfe02dbf3600cd40d6b21230cf4c26f640c9c066d5f026f6b9d3dfdabfa1fa00be233430d6030cfa9968f6002e37e2769d177f1
-
SSDEEP
1536:8rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:8jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-