General
-
Target
2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab
-
Size
76KB
-
Sample
240929-tvk23a1ejj
-
MD5
62ee95dd4f9b46e109182ba7b64f1da5
-
SHA1
24daf4527ee7f5401009b87f5196a4f2fb9cf04e
-
SHA256
c66a1683a91d779251a2f22f2f2d873ec10f524fe7fd950e0007ee355aab831e
-
SHA512
0a9bc66fb8eeba44bd6b7cf72054d804dd8e6b2d346fd2c64209d21c5f2f383a367f324e23ac690a69016ec9a17cb7a687f2adb3bf69c1504d9d0bfdf3ec302d
-
SSDEEP
1536:955u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:1MSjOnrmBTMqqDL2/mr3IdE8we0Avu5J
Behavioral task
behavioral1
Sample
2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-09-29_62ee95dd4f9b46e109182ba7b64f1da5_gandcrab
-
Size
76KB
-
MD5
62ee95dd4f9b46e109182ba7b64f1da5
-
SHA1
24daf4527ee7f5401009b87f5196a4f2fb9cf04e
-
SHA256
c66a1683a91d779251a2f22f2f2d873ec10f524fe7fd950e0007ee355aab831e
-
SHA512
0a9bc66fb8eeba44bd6b7cf72054d804dd8e6b2d346fd2c64209d21c5f2f383a367f324e23ac690a69016ec9a17cb7a687f2adb3bf69c1504d9d0bfdf3ec302d
-
SSDEEP
1536:955u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5r9:1MSjOnrmBTMqqDL2/mr3IdE8we0Avu5J
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-