General

  • Target

    20240929c89bbcb079130ad1ad6e3d50744a0b9bgandcrab

  • Size

    73KB

  • Sample

    240929-z8nyrsvgjf

  • MD5

    c89bbcb079130ad1ad6e3d50744a0b9b

  • SHA1

    69f312770b78fe2fe82e8915441d470dcc13a0f6

  • SHA256

    fe5ca7b09dab57e9af20cca5382f033b43369380e8797e474cae91827f4f9384

  • SHA512

    3c7e686e56a44967de4793f73878055acf4875d60a2fd0983ee220c6a7a632b34c440920eae5e8fd6dd1fe8a55e18970f5e57087ebbe5dcabca48b17df97e084

  • SSDEEP

    1536:b55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:nMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      20240929c89bbcb079130ad1ad6e3d50744a0b9bgandcrab

    • Size

      73KB

    • MD5

      c89bbcb079130ad1ad6e3d50744a0b9b

    • SHA1

      69f312770b78fe2fe82e8915441d470dcc13a0f6

    • SHA256

      fe5ca7b09dab57e9af20cca5382f033b43369380e8797e474cae91827f4f9384

    • SHA512

      3c7e686e56a44967de4793f73878055acf4875d60a2fd0983ee220c6a7a632b34c440920eae5e8fd6dd1fe8a55e18970f5e57087ebbe5dcabca48b17df97e084

    • SSDEEP

      1536:b55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:nMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks