General

  • Target

    88ef2f11ff365e448b6900a5ba2fffa0_JaffaCakes118

  • Size

    73KB

  • MD5

    88ef2f11ff365e448b6900a5ba2fffa0

  • SHA1

    02858d7566f8324ac6eeb6e4b9a0867bf555b8a4

  • SHA256

    0d641a6e15a1b393fa49c6c2e98ada6e7a04a9163667f667d3776786515d0991

  • SHA512

    906457d40771a063e4e9c977760c946821cf20260b301110755999e046fa09d7255f00c3973abcca0c07fb1b5f74a3e0735d0a116773bb7997d7578736d7d0db

  • SSDEEP

    1536:8gSeGDjtQhnwmmB0yjMqqUM2mr3IdE8mne0Avu5r++yy7CA7GcIaapavdv:8MSjOnrmBbMqqMmr3IdE8we0Avu5r++N

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 88ef2f11ff365e448b6900a5ba2fffa0_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections