General
-
Target
2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab
-
Size
73KB
-
Sample
241215-dzta8svjdr
-
MD5
8e0d61d09c3ff6124d933ff20f641619
-
SHA1
610ef253916605e4fcff6b6f99b94bd1b0702b71
-
SHA256
46f13556c35d75e959e748050b94b83c064ea41706c5b859bad73e65e969c03a
-
SHA512
5ba830df076e196d3b4a019b6794e312ffb25458fd6201c6bc25330b569af2a33102180b69ad44ad1e1b72400df44d76f8e44ada27f42f416f978596ef75656a
-
SSDEEP
1536:0555555555555pmgSeGDjtQhnwmmB0yxMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rZ:xMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-12-15_8e0d61d09c3ff6124d933ff20f641619_gandcrab
-
Size
73KB
-
MD5
8e0d61d09c3ff6124d933ff20f641619
-
SHA1
610ef253916605e4fcff6b6f99b94bd1b0702b71
-
SHA256
46f13556c35d75e959e748050b94b83c064ea41706c5b859bad73e65e969c03a
-
SHA512
5ba830df076e196d3b4a019b6794e312ffb25458fd6201c6bc25330b569af2a33102180b69ad44ad1e1b72400df44d76f8e44ada27f42f416f978596ef75656a
-
SSDEEP
1536:0555555555555pmgSeGDjtQhnwmmB0yxMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rZ:xMSjOnrmBpMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-