General

  • Target

    2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab

  • Size

    88KB

  • Sample

    240507-b18q7sfe78

  • MD5

    b8dbd7db19916a8d2ad553e5141a9cad

  • SHA1

    9ef6db91d812b607989be4a14bb6075ed070d0be

  • SHA256

    e9e77af41becb9d652bf019df23aaea41dcb86640d3a9e05f514a7af3de8677b

  • SHA512

    c1933b03bfee3eb84912237dcbfe02dbf3600cd40d6b21230cf4c26f640c9c066d5f026f6b9d3dfdabfa1fa00be233430d6030cfa9968f6002e37e2769d177f1

  • SSDEEP

    1536:8rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:8jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-05-07_b8dbd7db19916a8d2ad553e5141a9cad_gandcrab

    • Size

      88KB

    • MD5

      b8dbd7db19916a8d2ad553e5141a9cad

    • SHA1

      9ef6db91d812b607989be4a14bb6075ed070d0be

    • SHA256

      e9e77af41becb9d652bf019df23aaea41dcb86640d3a9e05f514a7af3de8677b

    • SHA512

      c1933b03bfee3eb84912237dcbfe02dbf3600cd40d6b21230cf4c26f640c9c066d5f026f6b9d3dfdabfa1fa00be233430d6030cfa9968f6002e37e2769d177f1

    • SSDEEP

      1536:8rsWDX9pwpQUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:8jDX9pwzMqqDL2/mr3IdE8we0Avu5r+g

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks