General

  • Target

    2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab

  • Size

    73KB

  • Sample

    241215-dzta8svjdr

  • MD5

    8e0d61d09c3ff6124d933ff20f641619

  • SHA1

    610ef253916605e4fcff6b6f99b94bd1b0702b71

  • SHA256

    46f13556c35d75e959e748050b94b83c064ea41706c5b859bad73e65e969c03a

  • SHA512

    5ba830df076e196d3b4a019b6794e312ffb25458fd6201c6bc25330b569af2a33102180b69ad44ad1e1b72400df44d76f8e44ada27f42f416f978596ef75656a

  • SSDEEP

    1536:0555555555555pmgSeGDjtQhnwmmB0yxMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rZ:xMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab

    • Size

      73KB

    • MD5

      8e0d61d09c3ff6124d933ff20f641619

    • SHA1

      610ef253916605e4fcff6b6f99b94bd1b0702b71

    • SHA256

      46f13556c35d75e959e748050b94b83c064ea41706c5b859bad73e65e969c03a

    • SHA512

      5ba830df076e196d3b4a019b6794e312ffb25458fd6201c6bc25330b569af2a33102180b69ad44ad1e1b72400df44d76f8e44ada27f42f416f978596ef75656a

    • SSDEEP

      1536:0555555555555pmgSeGDjtQhnwmmB0yxMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rZ:xMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks