General

  • Target

    2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab

  • Size

    73KB

  • Sample

    241219-e9kmhsyld1

  • MD5

    8a15725d2b19dd5bf3a9aab289cf329d

  • SHA1

    2420bca18383c3fa50899a0c93676d9296d7bd6a

  • SHA256

    6768bb9510d903dc6a7bc647131250a01dbfe606ebb83fd6b7181b2f33dc5a35

  • SHA512

    915916ee7c34789e4460d657e874e7c82c558f6394571e89a30be890c974d3075562f866930efff22f77608e7642fa387a1ee6f5b323eb0c6910563fb0ca600d

  • SSDEEP

    1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab

    • Size

      73KB

    • MD5

      8a15725d2b19dd5bf3a9aab289cf329d

    • SHA1

      2420bca18383c3fa50899a0c93676d9296d7bd6a

    • SHA256

      6768bb9510d903dc6a7bc647131250a01dbfe606ebb83fd6b7181b2f33dc5a35

    • SHA512

      915916ee7c34789e4460d657e874e7c82c558f6394571e89a30be890c974d3075562f866930efff22f77608e7642fa387a1ee6f5b323eb0c6910563fb0ca600d

    • SSDEEP

      1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks