General

  • Target

    484-5-0x0000000000230000-0x0000000000246000-memory.dmp

  • Size

    88KB

  • MD5

    9ac93f697ac065d84cea14bb801aa5db

  • SHA1

    ee385d3776743a47dd966f2f56add14c59b5c4bc

  • SHA256

    f42347238855230b24f3be391c65c581952f2e264136e902f2ee37642caa11b0

  • SHA512

    c449b53e804dc5b6edd2320670e71446f09b93047098e76d1c5c00b728bc561814b198bfa9bef2c32edc983b76733d5f99d3de9f5aec35222d72c8d7af90dfa1

  • SSDEEP

    1536:gxxxxxxxxxxxxBhCMZpjQcVJcDQUPT21cMqqU+2bbbAV2/S2a4Uvd5I5fpdNqU:aTpNc0UQcMqqDL2/avvdSN

Score
10/10

Malware Config

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 484-5-0x0000000000230000-0x0000000000246000-memory.dmp
    .dll windows:5 windows x86 arch:x86


    Headers

    Sections