General
-
Target
2024-05-25_8456b834eb514591ba6e9a12bbef53e6_gandcrab
-
Size
73KB
-
Sample
240525-f9te4afh8y
-
MD5
8456b834eb514591ba6e9a12bbef53e6
-
SHA1
6c382d071d848f1b677c65394a781ef4c210decc
-
SHA256
cd825bf113e90f19b6157cc3dc9556e07101de65d8d8ee4e0918c81f485bb903
-
SHA512
9532fee7035e0110d9927c847ac43decf440184c590abc7db53a204f39cc5fee5820c3e48acffe79ce86cccb063af2153e9de363f72f3dcb27a9beee726de0cc
-
SSDEEP
1536:i555555555555pmgSeGDjtQhnwmmB0yfnMqqU+2bbbAV2/S2mr3IdE8mne0Avu52:zMSjOnrmBHnMqqDL2/mr3IdE8we0Avuj
Behavioral task
behavioral1
Sample
2024-05-25_8456b834eb514591ba6e9a12bbef53e6_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-25_8456b834eb514591ba6e9a12bbef53e6_gandcrab.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-25_8456b834eb514591ba6e9a12bbef53e6_gandcrab
-
Size
73KB
-
MD5
8456b834eb514591ba6e9a12bbef53e6
-
SHA1
6c382d071d848f1b677c65394a781ef4c210decc
-
SHA256
cd825bf113e90f19b6157cc3dc9556e07101de65d8d8ee4e0918c81f485bb903
-
SHA512
9532fee7035e0110d9927c847ac43decf440184c590abc7db53a204f39cc5fee5820c3e48acffe79ce86cccb063af2153e9de363f72f3dcb27a9beee726de0cc
-
SSDEEP
1536:i555555555555pmgSeGDjtQhnwmmB0yfnMqqU+2bbbAV2/S2mr3IdE8mne0Avu52:zMSjOnrmBHnMqqDL2/mr3IdE8we0Avuj
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-