General

  • Target

    2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab

  • Size

    74KB

  • Sample

    240508-arzaqsbe48

  • MD5

    3cfd6c49c7f132b3a4202a8a09acfc41

  • SHA1

    dc2d9d7e9691d17e91cfcbb3d0dfb0e9a71e069d

  • SHA256

    cc2f89686c60a797d676484d843c84c0a7075241287d8c9821d4303cc7258e9e

  • SHA512

    8cc994c06b34f32e0879e4255b0b5fb569fbb14e253e089e8a922ad3bc0a265fc5e693f8a23478417ba2be9181c889bada27c3a3df36b3e50017be942d8b541e

  • SSDEEP

    1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab

    • Size

      74KB

    • MD5

      3cfd6c49c7f132b3a4202a8a09acfc41

    • SHA1

      dc2d9d7e9691d17e91cfcbb3d0dfb0e9a71e069d

    • SHA256

      cc2f89686c60a797d676484d843c84c0a7075241287d8c9821d4303cc7258e9e

    • SHA512

      8cc994c06b34f32e0879e4255b0b5fb569fbb14e253e089e8a922ad3bc0a265fc5e693f8a23478417ba2be9181c889bada27c3a3df36b3e50017be942d8b541e

    • SSDEEP

      1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks