General

  • Target

    5203b2331d98decd3ec04be2cf797691d33bfb66dd403e28f362fbc1069eacd8.exe

  • Size

    83KB

  • Sample

    240726-dr8e7aweqc

  • MD5

    87ebe585e29a5ecc568195bba6722446

  • SHA1

    f7cd9fb4cbd1d0261d6183fd732b22cdfd652673

  • SHA256

    5203b2331d98decd3ec04be2cf797691d33bfb66dd403e28f362fbc1069eacd8

  • SHA512

    8fd61b0c5f2474012d3d9bc33fc7e01ac018b7fa14745d7c1b3cc4e7ddcc357a8e4e2c529c87b79154cc8d57f87ba64ec1639f25a2346f7ffbe0fdd975f1b5f4

  • SSDEEP

    1536:255u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:8MSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      5203b2331d98decd3ec04be2cf797691d33bfb66dd403e28f362fbc1069eacd8.exe

    • Size

      83KB

    • MD5

      87ebe585e29a5ecc568195bba6722446

    • SHA1

      f7cd9fb4cbd1d0261d6183fd732b22cdfd652673

    • SHA256

      5203b2331d98decd3ec04be2cf797691d33bfb66dd403e28f362fbc1069eacd8

    • SHA512

      8fd61b0c5f2474012d3d9bc33fc7e01ac018b7fa14745d7c1b3cc4e7ddcc357a8e4e2c529c87b79154cc8d57f87ba64ec1639f25a2346f7ffbe0fdd975f1b5f4

    • SSDEEP

      1536:255u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r5:8MSjOnrmBTMqqDL2/mr3IdE8we0Avu5l

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks