General
-
Target
2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab
-
Size
74KB
-
Sample
240508-arzaqsbe48
-
MD5
3cfd6c49c7f132b3a4202a8a09acfc41
-
SHA1
dc2d9d7e9691d17e91cfcbb3d0dfb0e9a71e069d
-
SHA256
cc2f89686c60a797d676484d843c84c0a7075241287d8c9821d4303cc7258e9e
-
SHA512
8cc994c06b34f32e0879e4255b0b5fb569fbb14e253e089e8a922ad3bc0a265fc5e693f8a23478417ba2be9181c889bada27c3a3df36b3e50017be942d8b541e
-
SSDEEP
1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Behavioral task
behavioral1
Sample
2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-08_3cfd6c49c7f132b3a4202a8a09acfc41_gandcrab
-
Size
74KB
-
MD5
3cfd6c49c7f132b3a4202a8a09acfc41
-
SHA1
dc2d9d7e9691d17e91cfcbb3d0dfb0e9a71e069d
-
SHA256
cc2f89686c60a797d676484d843c84c0a7075241287d8c9821d4303cc7258e9e
-
SHA512
8cc994c06b34f32e0879e4255b0b5fb569fbb14e253e089e8a922ad3bc0a265fc5e693f8a23478417ba2be9181c889bada27c3a3df36b3e50017be942d8b541e
-
SSDEEP
1536:l55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:tMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-