General

  • Target

    fe7309a68b25e4f0c84561ca4bab3974_JaffaCakes118

  • Size

    73KB

  • Sample

    240929-nssfgawelc

  • MD5

    fe7309a68b25e4f0c84561ca4bab3974

  • SHA1

    96efb38707e601cd9142c9f3fe496601667738c2

  • SHA256

    00b4eedbb85d52ce1a691501cbbf4587c49c93906611268a75ac547337c5919a

  • SHA512

    86cf8e4da7db743a1e66c2464090a9fd01e00959d30b132e568f567d7b538729d61308e134d153027299de70ce764b5337442736a1dc00ffb15cd1ff3d963fd0

  • SSDEEP

    1536:H55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:jMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      fe7309a68b25e4f0c84561ca4bab3974_JaffaCakes118

    • Size

      73KB

    • MD5

      fe7309a68b25e4f0c84561ca4bab3974

    • SHA1

      96efb38707e601cd9142c9f3fe496601667738c2

    • SHA256

      00b4eedbb85d52ce1a691501cbbf4587c49c93906611268a75ac547337c5919a

    • SHA512

      86cf8e4da7db743a1e66c2464090a9fd01e00959d30b132e568f567d7b538729d61308e134d153027299de70ce764b5337442736a1dc00ffb15cd1ff3d963fd0

    • SSDEEP

      1536:H55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:jMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks