General
-
Target
2024-07-10_f85ee8f7f48587175bc67b6a1190617f_gandcrab
-
Size
73KB
-
Sample
240710-b5enxs1brb
-
MD5
f85ee8f7f48587175bc67b6a1190617f
-
SHA1
969f0fccf4354b0341726e7338e73cd66f07b1ac
-
SHA256
383c99fadcac7af4ad40ed3b12a3ece6ea1998b536460020fd02ed373c5ca952
-
SHA512
dd9be7639e5b6fbc3da3b4367f26c3662d5175b62b4e00d715ee696613f0b8cb4e886fdbefe3584f3befb42e9b6f4bd420381dce7883a5a3ce911a6c65878c84
-
SSDEEP
1536:h55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:JMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F
Behavioral task
behavioral1
Sample
2024-07-10_f85ee8f7f48587175bc67b6a1190617f_gandcrab.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
2024-07-10_f85ee8f7f48587175bc67b6a1190617f_gandcrab.exe
Resource
win10v2004-20240709-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-07-10_f85ee8f7f48587175bc67b6a1190617f_gandcrab
-
Size
73KB
-
MD5
f85ee8f7f48587175bc67b6a1190617f
-
SHA1
969f0fccf4354b0341726e7338e73cd66f07b1ac
-
SHA256
383c99fadcac7af4ad40ed3b12a3ece6ea1998b536460020fd02ed373c5ca952
-
SHA512
dd9be7639e5b6fbc3da3b4367f26c3662d5175b62b4e00d715ee696613f0b8cb4e886fdbefe3584f3befb42e9b6f4bd420381dce7883a5a3ce911a6c65878c84
-
SSDEEP
1536:h55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:JMSjOnrmBTMqqDL2/mr3IdE8we0Avu5F
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-