General

  • Target

    8593fc18d2193e9c5073bbc3815cc371_JaffaCakes118

  • Size

    73KB

  • MD5

    8593fc18d2193e9c5073bbc3815cc371

  • SHA1

    4cf224a9b78997bb6d123485f45f936a175d96ea

  • SHA256

    61ce129923cc2db727c210b4ae535754f62fb92c7e740a2293fc77089abc604b

  • SHA512

    6ee96bef73406f663bf973de42713859d312a06e511417af2e683a5b3f49a3255cba1a0759b4ec1a2d61d0cfeca6c79ccae17bf6171218e5f3e3b9cd180988ba

  • SSDEEP

    1536:1555555555555pmgSeGDjtQhnwmmB0yTDMqqU+2bbbAV2/S2mr3IdE8mne0Avu51:SMSjOnrmBHMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8593fc18d2193e9c5073bbc3815cc371_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections