General

  • Target

    2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab

  • Size

    73KB

  • Sample

    241212-av2j9syldq

  • MD5

    d8b99cbf7428ce98369c2db8200b6f57

  • SHA1

    d1ddd437fb08d9563b62b682f3ea178a41491975

  • SHA256

    34901b09ce905edf87e107301c319dda942b84834493af06ab81c90ee7520829

  • SHA512

    cb084a9309c9219e58f60bbe06fc6724c96b1b80c48c5ca566e29d1f6ec19bac5b3a0105b217b877a59fc24311afd8d5dce8b88a3ba516180eae3e12a0339aa5

  • SSDEEP

    1536:M55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:uMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab

    • Size

      73KB

    • MD5

      d8b99cbf7428ce98369c2db8200b6f57

    • SHA1

      d1ddd437fb08d9563b62b682f3ea178a41491975

    • SHA256

      34901b09ce905edf87e107301c319dda942b84834493af06ab81c90ee7520829

    • SHA512

      cb084a9309c9219e58f60bbe06fc6724c96b1b80c48c5ca566e29d1f6ec19bac5b3a0105b217b877a59fc24311afd8d5dce8b88a3ba516180eae3e12a0339aa5

    • SSDEEP

      1536:M55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:uMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks