General
-
Target
2024-05-08_7c2e5c0893a6e6e41f3264fdba26efcc_gandcrab
-
Size
74KB
-
Sample
240508-d3zx7aba78
-
MD5
7c2e5c0893a6e6e41f3264fdba26efcc
-
SHA1
4f97408c10af5a503437ae25b37165994e2f183a
-
SHA256
c80d720b4ba77099b777454011004a44463356039d941780490a5769b9e4a034
-
SHA512
87816447f875b31fe56f2720404b1d4fd2f2200f19715e70810bc4a1861ca150d1e033bebdfbc625bf61220297c8f3ecef0b14c2d2c563b5ab2944bde91613cb
-
SSDEEP
1536:m55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:MMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Behavioral task
behavioral1
Sample
2024-05-08_7c2e5c0893a6e6e41f3264fdba26efcc_gandcrab.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-05-08_7c2e5c0893a6e6e41f3264fdba26efcc_gandcrab.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-08_7c2e5c0893a6e6e41f3264fdba26efcc_gandcrab
-
Size
74KB
-
MD5
7c2e5c0893a6e6e41f3264fdba26efcc
-
SHA1
4f97408c10af5a503437ae25b37165994e2f183a
-
SHA256
c80d720b4ba77099b777454011004a44463356039d941780490a5769b9e4a034
-
SHA512
87816447f875b31fe56f2720404b1d4fd2f2200f19715e70810bc4a1861ca150d1e033bebdfbc625bf61220297c8f3ecef0b14c2d2c563b5ab2944bde91613cb
-
SSDEEP
1536:m55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rS:MMSjOnrmBTMqqDL2/mr3IdE8we0Avu5O
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-