General
-
Target
2024-09-08_8d9089e1562f3488182e0f18b6fbaae9_gandcrab
-
Size
99KB
-
MD5
8d9089e1562f3488182e0f18b6fbaae9
-
SHA1
cf2f5f1a153cab6610fd2c16d21b415dbf0d8d30
-
SHA256
be0aaabd96230d6971623ca787351998839d7ae001db3ad3c5dbda4d36009415
-
SHA512
ee497e5446368d1ebf4506b037f00b441722c4dff1ef9de98ae716e2dcd70324fc923e561d3d83c1da1fe5837e23c2da3b5e527339793d58e674014173f329be
-
SSDEEP
3072:aMSjOnrmBIMqqDL2/mr3IdE8we0Avu5r++ygLIaaypQ8CrS6:aXjOnr6jqqDL6aprYS6
Score
10/10
Malware Config
Extracted
Family
gandcrab
C2
http://gdcbghvjyqy7jclk.onion.top/
Signatures
-
GandCrab payload 1 IoCs
-
Gandcrab family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2024-09-08_8d9089e1562f3488182e0f18b6fbaae9_gandcrab
Headers
Sections