General
-
Target
2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab
-
Size
76KB
-
Sample
240927-asyetswbpj
-
MD5
dbcbcbf1a004ae16fcd90f13a2f2ce1e
-
SHA1
fdd6f2e88228053d806ebeb42e701eace72a9747
-
SHA256
b6b189f19c4daa26d2948b82c972323317523775c0cbe93265809e7de62d3bb0
-
SHA512
7055a70c57b70480c25addb189bebfa35c6d71d6e660fafe33c9427d33814117a87785447786c8012b76bfbfc9a2a4ee06141de25430222a0982400aafdcb248
-
SSDEEP
1536:r55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rG:XMSjOnrmBTMqqDL2/mr3IdE8we0Avu56
Behavioral task
behavioral1
Sample
2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-09-27_dbcbcbf1a004ae16fcd90f13a2f2ce1e_gandcrab
-
Size
76KB
-
MD5
dbcbcbf1a004ae16fcd90f13a2f2ce1e
-
SHA1
fdd6f2e88228053d806ebeb42e701eace72a9747
-
SHA256
b6b189f19c4daa26d2948b82c972323317523775c0cbe93265809e7de62d3bb0
-
SHA512
7055a70c57b70480c25addb189bebfa35c6d71d6e660fafe33c9427d33814117a87785447786c8012b76bfbfc9a2a4ee06141de25430222a0982400aafdcb248
-
SSDEEP
1536:r55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rG:XMSjOnrmBTMqqDL2/mr3IdE8we0Avu56
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-