General

  • Target

    2024-05-31_cf9dac8a0daf7b2ac51b006d0c0fcc00_bkransomware_gandcrab_karagany

  • Size

    155KB

  • MD5

    cf9dac8a0daf7b2ac51b006d0c0fcc00

  • SHA1

    f3cd556ee4545b2f7b4ef254c2652abb227a8587

  • SHA256

    bcd0fa724bb0e8e7536fe197e363fe5d0dc3c99419e61b1e84a53b377648d137

  • SHA512

    4c0ddd5e0accb6c014b5079a1df5c5a211095d4cb3483fe60f62534b5ae2f0b6bf43ddcb26580f7905b9b60eb7d086e69c89f120da865991c04f5dc4ce87afa1

  • SSDEEP

    3072:l5K/B0toLQSNJzlZHQsozTS+SMqqDL2/TrKfmG:lcytwtp1yTS+xqqDL6HKP

Score
10/10

Malware Config

Signatures

  • Detects Reflective DLL injection artifacts 1 IoCs
  • Detects ransomware indicator 1 IoCs
  • GandCrab payload 1 IoCs
  • Gandcrab Payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-05-31_cf9dac8a0daf7b2ac51b006d0c0fcc00_bkransomware_gandcrab_karagany
    .exe windows:5 windows x86 arch:x86

    7848011b763d00cd02658995847dd30b


    Headers

    Imports

    Sections