General
-
Target
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8.exe
-
Size
250KB
-
Sample
240726-w31htszdnf
-
MD5
a1d0a0114fb6b3e0e1ca0f78f664e8e3
-
SHA1
2ae730f75235d9ae25f2cc74665f3d0a1b565e71
-
SHA256
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8
-
SHA512
dc44a74680af66306791e7b70ad6c6d2985b5e5ad84b79d3651d92a92fb49b832595ccf5693022cee289cb0db9faec2273cc3330ab8865f37e6d8360ce8b0a4f
-
SSDEEP
6144:z+YrOIBjaklexBgiJ8sTSIkIpxIp8mDtfPBRwasxX:HOCjaklYgVIpxIhDt
Static task
static1
Behavioral task
behavioral1
Sample
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8.exe
-
Size
250KB
-
MD5
a1d0a0114fb6b3e0e1ca0f78f664e8e3
-
SHA1
2ae730f75235d9ae25f2cc74665f3d0a1b565e71
-
SHA256
283a17fe8380d7a844a035d2addc8942f9dd40352e297debf205c4cd880bbcc8
-
SHA512
dc44a74680af66306791e7b70ad6c6d2985b5e5ad84b79d3651d92a92fb49b832595ccf5693022cee289cb0db9faec2273cc3330ab8865f37e6d8360ce8b0a4f
-
SSDEEP
6144:z+YrOIBjaklexBgiJ8sTSIkIpxIp8mDtfPBRwasxX:HOCjaklYgVIpxIhDt
Score10/10-
GandCrab payload
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-