General
-
Target
2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab
-
Size
73KB
-
Sample
241219-e9kmhsyld1
-
MD5
8a15725d2b19dd5bf3a9aab289cf329d
-
SHA1
2420bca18383c3fa50899a0c93676d9296d7bd6a
-
SHA256
6768bb9510d903dc6a7bc647131250a01dbfe606ebb83fd6b7181b2f33dc5a35
-
SHA512
915916ee7c34789e4460d657e874e7c82c558f6394571e89a30be890c974d3075562f866930efff22f77608e7642fa387a1ee6f5b323eb0c6910563fb0ca600d
-
SSDEEP
1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab
-
Size
73KB
-
MD5
8a15725d2b19dd5bf3a9aab289cf329d
-
SHA1
2420bca18383c3fa50899a0c93676d9296d7bd6a
-
SHA256
6768bb9510d903dc6a7bc647131250a01dbfe606ebb83fd6b7181b2f33dc5a35
-
SHA512
915916ee7c34789e4460d657e874e7c82c558f6394571e89a30be890c974d3075562f866930efff22f77608e7642fa387a1ee6f5b323eb0c6910563fb0ca600d
-
SSDEEP
1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-