General

  • Target

    72b037abe9d3f91c61da84cafdc44226_JaffaCakes118

  • Size

    73KB

  • MD5

    72b037abe9d3f91c61da84cafdc44226

  • SHA1

    50076a39aeabb15e5165aa7f1885284fe7916b92

  • SHA256

    5db51c8351fec16e636759570d5ce125cf1f8f1fea8b1e7084da967a66567e65

  • SHA512

    078e43b0789f01ea3a3e6be560a068d7f9bb188339779a9665c9c90ad939ea7985649f38ae2100eda6d8d2b6db767c627916967573d5ff421322631360e02440

  • SSDEEP

    1536:E55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:WMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 72b037abe9d3f91c61da84cafdc44226_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections