General

  • Target

    2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab

  • Size

    76KB

  • Sample

    240929-tvk23a1ejj

  • MD5

    62ee95dd4f9b46e109182ba7b64f1da5

  • SHA1

    24daf4527ee7f5401009b87f5196a4f2fb9cf04e

  • SHA256

    c66a1683a91d779251a2f22f2f2d873ec10f524fe7fd950e0007ee355aab831e

  • SHA512

    0a9bc66fb8eeba44bd6b7cf72054d804dd8e6b2d346fd2c64209d21c5f2f383a367f324e23ac690a69016ec9a17cb7a687f2adb3bf69c1504d9d0bfdf3ec302d

  • SSDEEP

    1536:955u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:1MSjOnrmBTMqqDL2/mr3IdE8we0Avu5J

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab

    • Size

      76KB

    • MD5

      62ee95dd4f9b46e109182ba7b64f1da5

    • SHA1

      24daf4527ee7f5401009b87f5196a4f2fb9cf04e

    • SHA256

      c66a1683a91d779251a2f22f2f2d873ec10f524fe7fd950e0007ee355aab831e

    • SHA512

      0a9bc66fb8eeba44bd6b7cf72054d804dd8e6b2d346fd2c64209d21c5f2f383a367f324e23ac690a69016ec9a17cb7a687f2adb3bf69c1504d9d0bfdf3ec302d

    • SSDEEP

      1536:955u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:1MSjOnrmBTMqqDL2/mr3IdE8we0Avu5J

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks