General

  • Target

    2024-09-27_00691002e7ba6874fed4d6ec1557ae46_gandcrab

  • Size

    76KB

  • Sample

    240927-tt7vfatdkd

  • MD5

    00691002e7ba6874fed4d6ec1557ae46

  • SHA1

    0a710d684ca5feb20cf896fcd85462756c7e3a8b

  • SHA256

    2d635a2c76bbd63ab226e570e9410c31b206ea416dc486e27da3270c740943b1

  • SHA512

    2685bfad99746f3a5a9598cf26b67fa6e6b18afaa9e5c3dc8c3bed3c0b37eb4d7409b8aad52b046c4e0f402b900e40abf3096d7d5193743ea54093d0dd3aaa78

  • SSDEEP

    1536:t55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:FMSjOnrmBTMqqDL2/mr3IdE8we0Avu5J

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-09-27_00691002e7ba6874fed4d6ec1557ae46_gandcrab

    • Size

      76KB

    • MD5

      00691002e7ba6874fed4d6ec1557ae46

    • SHA1

      0a710d684ca5feb20cf896fcd85462756c7e3a8b

    • SHA256

      2d635a2c76bbd63ab226e570e9410c31b206ea416dc486e27da3270c740943b1

    • SHA512

      2685bfad99746f3a5a9598cf26b67fa6e6b18afaa9e5c3dc8c3bed3c0b37eb4d7409b8aad52b046c4e0f402b900e40abf3096d7d5193743ea54093d0dd3aaa78

    • SSDEEP

      1536:t55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:FMSjOnrmBTMqqDL2/mr3IdE8we0Avu5J

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks