General

  • Target

    5f177534ce4289a7dd168f8d6ed8f500N.exe

  • Size

    31KB

  • Sample

    240715-cfrsmasgqk

  • MD5

    5f177534ce4289a7dd168f8d6ed8f500

  • SHA1

    a0a9a6a60199781ea5092a5aa909b7290247abbb

  • SHA256

    3301e9cdc8a09808a2e212c7215988c5e2ca4115f09442b98d135893853bfd3e

  • SHA512

    88c08db12036b257edbe33fbc0c3b4bef8fae04b4180b02e593426d64ba9c2cb1402ae94451923688bc1a7c58b6cc10fc39830dec58d7c3f9c4e84785a31d7ef

  • SSDEEP

    768:dOdi7U8bmm64KgiV6suSHH7tgUGi0i9QXOKa91T0W2hwh/a8:d6QDbmm64Kg06suSHbtpGi0idKanT0A

Malware Config

Targets

    • Target

      5f177534ce4289a7dd168f8d6ed8f500N.exe

    • Size

      31KB

    • MD5

      5f177534ce4289a7dd168f8d6ed8f500

    • SHA1

      a0a9a6a60199781ea5092a5aa909b7290247abbb

    • SHA256

      3301e9cdc8a09808a2e212c7215988c5e2ca4115f09442b98d135893853bfd3e

    • SHA512

      88c08db12036b257edbe33fbc0c3b4bef8fae04b4180b02e593426d64ba9c2cb1402ae94451923688bc1a7c58b6cc10fc39830dec58d7c3f9c4e84785a31d7ef

    • SSDEEP

      768:dOdi7U8bmm64KgiV6suSHH7tgUGi0i9QXOKa91T0W2hwh/a8:d6QDbmm64Kg06suSHbtpGi0idKanT0A

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks