General
-
Target
2024-05-25_34eaf9b067ba7d78e7dd4aba06a0a4b8_gandcrab
-
Size
73KB
-
Sample
240525-d5n9gadb21
-
MD5
34eaf9b067ba7d78e7dd4aba06a0a4b8
-
SHA1
75d689aae733ff80041f075123e2357285c1a56f
-
SHA256
a8d4fdb5f04a03f9625c30bce4dc9c47e5ac40a7edbefdfd109b247a9c87ef73
-
SHA512
773d15f6f53c5e765577af5d3ab622f279f7fcde690eff2abf425cc9bf85ad146f8ceb2b97b7145b6f511a75c7cf9cc9d86b65786e810072a05170c9b84f7158
-
SSDEEP
1536:J555555555555pmgSeGDjtQhnwmmB0yoUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5u:2MSjOnrmBwUMqqDL2/mr3IdE8we0Avuj
Behavioral task
behavioral1
Sample
2024-05-25_34eaf9b067ba7d78e7dd4aba06a0a4b8_gandcrab.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-25_34eaf9b067ba7d78e7dd4aba06a0a4b8_gandcrab.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-25_34eaf9b067ba7d78e7dd4aba06a0a4b8_gandcrab
-
Size
73KB
-
MD5
34eaf9b067ba7d78e7dd4aba06a0a4b8
-
SHA1
75d689aae733ff80041f075123e2357285c1a56f
-
SHA256
a8d4fdb5f04a03f9625c30bce4dc9c47e5ac40a7edbefdfd109b247a9c87ef73
-
SHA512
773d15f6f53c5e765577af5d3ab622f279f7fcde690eff2abf425cc9bf85ad146f8ceb2b97b7145b6f511a75c7cf9cc9d86b65786e810072a05170c9b84f7158
-
SSDEEP
1536:J555555555555pmgSeGDjtQhnwmmB0yoUMqqU+2bbbAV2/S2mr3IdE8mne0Avu5u:2MSjOnrmBwUMqqDL2/mr3IdE8we0Avuj
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-