General

  • Target

    2024-05-25_38d6da73cc0597de9116bb50ad9708f6_bkransomware_gandcrab_karagany

  • Size

    155KB

  • MD5

    38d6da73cc0597de9116bb50ad9708f6

  • SHA1

    e57c6ad87a918a07facace93b69fc0fa29c26edf

  • SHA256

    1a5f79bcce81648c56e6462ce0ad58c3357952fd3528e36dbb11dbb00a14219b

  • SHA512

    806397c3d7d705a197c68de8f1a440ac8df2f9a430f00987a94c164a9df4dbdd79735650c56b002dc4495bd0a3ced80bf15d16705dada8e40c6a38c9dd2e4b7b

  • SSDEEP

    3072:l5K/B0toLvSNJelZHQsozTS+SMqqDL2/TrKQBG:lcytwyO1yTS+xqqDL6HKH

Score
10/10

Malware Config

Signatures

  • Detects Reflective DLL injection artifacts 1 IoCs
  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-25_38d6da73cc0597de9116bb50ad9708f6_bkransomware_gandcrab_karagany
    .exe windows:5 windows x86 arch:x86

    7848011b763d00cd02658995847dd30b


    Headers

    Imports

    Sections