General

  • Target

    2024-05-24_df9369fccd3e874a97af9e44a24c0100_bkransomware_gandcrab_karagany

  • Size

    141KB

  • MD5

    df9369fccd3e874a97af9e44a24c0100

  • SHA1

    50359da79cfcddbe2d1b49156ca2f0824161f1e9

  • SHA256

    d7dfe953e5fc3b3e0cdb5943274c0fb3e10166bc4697614c1d337524fe4a0547

  • SHA512

    4a6b104244879ae6de8f596375e846e8f46c3d743a06675e7d5f3fd943106555a8d1b97e38fb67c96ff74083eb8b3bc21aeeaa2e1d0c9ec594cad4d05ce5b801

  • SSDEEP

    3072:m5tmM+mSqQHMUs4QL1nMqqDL2/OPvdlt:m5t3lj4QL1MqqDL6svdlt

Score
10/10

Malware Config

Signatures

  • Detects Reflective DLL injection artifacts 1 IoCs
  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-24_df9369fccd3e874a97af9e44a24c0100_bkransomware_gandcrab_karagany
    .exe windows:5 windows x86 arch:x86

    7b6dd4245c054681d7b6b1f9b76fe984


    Headers

    Imports

    Sections