General
-
Target
2024-05-26_b7e1e9195f76132e728a8a9fac3f551b_gandcrab
-
Size
73KB
-
Sample
240526-e5vxpafg53
-
MD5
b7e1e9195f76132e728a8a9fac3f551b
-
SHA1
236164a8fe3ff0988b72c4e1d2153cc293f7edcc
-
SHA256
5cafa0769fd2533f502f4d7c9be074f2c336fa38f2c92871a72ad8afe14eb33e
-
SHA512
6f6623bc85e1758e49ca05909dd544c5f456a383c0e8c0be323b0d730f37af0661d94a0377efbb3b1726d15735b5b9671f3f5e674072e8d48d5ecb0e68245699
-
SSDEEP
1536:R555555555555pmgSeGDjtQhnwmmB0yBMqqU+2bbbAV2/S2mr3IdE8mne0Avu5re:eMSjOnrmBJMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-05-26_b7e1e9195f76132e728a8a9fac3f551b_gandcrab.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-26_b7e1e9195f76132e728a8a9fac3f551b_gandcrab.exe
Resource
win10v2004-20240426-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-05-26_b7e1e9195f76132e728a8a9fac3f551b_gandcrab
-
Size
73KB
-
MD5
b7e1e9195f76132e728a8a9fac3f551b
-
SHA1
236164a8fe3ff0988b72c4e1d2153cc293f7edcc
-
SHA256
5cafa0769fd2533f502f4d7c9be074f2c336fa38f2c92871a72ad8afe14eb33e
-
SHA512
6f6623bc85e1758e49ca05909dd544c5f456a383c0e8c0be323b0d730f37af0661d94a0377efbb3b1726d15735b5b9671f3f5e674072e8d48d5ecb0e68245699
-
SSDEEP
1536:R555555555555pmgSeGDjtQhnwmmB0yBMqqU+2bbbAV2/S2mr3IdE8mne0Avu5re:eMSjOnrmBJMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-