General

  • Target

    2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab

  • Size

    73KB

  • MD5

    8a15725d2b19dd5bf3a9aab289cf329d

  • SHA1

    2420bca18383c3fa50899a0c93676d9296d7bd6a

  • SHA256

    6768bb9510d903dc6a7bc647131250a01dbfe606ebb83fd6b7181b2f33dc5a35

  • SHA512

    915916ee7c34789e4460d657e874e7c82c558f6394571e89a30be890c974d3075562f866930efff22f77608e7642fa387a1ee6f5b323eb0c6910563fb0ca600d

  • SSDEEP

    1536:755u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:HMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h

Score
10/10

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-12-19_8a15725d2b19dd5bf3a9aab289cf329d_gandcrab
    .exe windows:5 windows x86 arch:x86

    40306b615af659fc1f93cfb121cc38d9


    Headers

    Imports

    Sections