General

  • Target

    2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab

  • Size

    76KB

  • Sample

    240927-asyetswbpj

  • MD5

    dbcbcbf1a004ae16fcd90f13a2f2ce1e

  • SHA1

    fdd6f2e88228053d806ebeb42e701eace72a9747

  • SHA256

    b6b189f19c4daa26d2948b82c972323317523775c0cbe93265809e7de62d3bb0

  • SHA512

    7055a70c57b70480c25addb189bebfa35c6d71d6e660fafe33c9427d33814117a87785447786c8012b76bfbfc9a2a4ee06141de25430222a0982400aafdcb248

  • SSDEEP

    1536:r55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rG:XMSjOnrmBTMqqDL2/mr3IdE8we0Avu56

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab

    • Size

      76KB

    • MD5

      dbcbcbf1a004ae16fcd90f13a2f2ce1e

    • SHA1

      fdd6f2e88228053d806ebeb42e701eace72a9747

    • SHA256

      b6b189f19c4daa26d2948b82c972323317523775c0cbe93265809e7de62d3bb0

    • SHA512

      7055a70c57b70480c25addb189bebfa35c6d71d6e660fafe33c9427d33814117a87785447786c8012b76bfbfc9a2a4ee06141de25430222a0982400aafdcb248

    • SSDEEP

      1536:r55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rG:XMSjOnrmBTMqqDL2/mr3IdE8we0Avu56

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks