General

  • Target

    2024-09-28_514f9022044fcb6f12ac3071998224e3_gandcrab

  • Size

    73KB

  • MD5

    514f9022044fcb6f12ac3071998224e3

  • SHA1

    acb722f4c3c2e558efcaf45f7cc683ed1890a6ea

  • SHA256

    7bc43dd3299554743b92bc134bb814a6ac1e665ebcd7d02f93e1ae02cba4fc07

  • SHA512

    803d7f2985a7c7668e07efa410d932ab0e0a7ff3cb95697af5f5cacea658e023609bd44a23e24d2af5d886eb345ca0a9b0d8f5de3a29215863ae0b2b0fba0ffe

  • SSDEEP

    1536:y555555555555pmgSeGDjtQhnwmmB0y5MqqU+2bbbAV2/S2mr3IdE8mne0Avu5rE:jMSjOnrmBRMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-09-28_514f9022044fcb6f12ac3071998224e3_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections