General
-
Target
2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab
-
Size
73KB
-
Sample
241212-av2j9syldq
-
MD5
d8b99cbf7428ce98369c2db8200b6f57
-
SHA1
d1ddd437fb08d9563b62b682f3ea178a41491975
-
SHA256
34901b09ce905edf87e107301c319dda942b84834493af06ab81c90ee7520829
-
SHA512
cb084a9309c9219e58f60bbe06fc6724c96b1b80c48c5ca566e29d1f6ec19bac5b3a0105b217b877a59fc24311afd8d5dce8b88a3ba516180eae3e12a0339aa5
-
SSDEEP
1536:M55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:uMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-12-12_d8b99cbf7428ce98369c2db8200b6f57_gandcrab
-
Size
73KB
-
MD5
d8b99cbf7428ce98369c2db8200b6f57
-
SHA1
d1ddd437fb08d9563b62b682f3ea178a41491975
-
SHA256
34901b09ce905edf87e107301c319dda942b84834493af06ab81c90ee7520829
-
SHA512
cb084a9309c9219e58f60bbe06fc6724c96b1b80c48c5ca566e29d1f6ec19bac5b3a0105b217b877a59fc24311afd8d5dce8b88a3ba516180eae3e12a0339aa5
-
SSDEEP
1536:M55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:uMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-