Overview

overview

10

Static

static

10

2025-01-05...ab.exe

windows7-x64

6

2025-01-05...ab.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-05_15b94992d6ef3b2b8740b13b241dcfa7_gandcrab

  • Size

    88KB

  • Sample

    250105-j98fsszrej

  • MD5

    15b94992d6ef3b2b8740b13b241dcfa7

  • SHA1

    8504b77cd779184b77e6a2be586ac3e05d7fbc0d

  • SHA256

    aa058fe08048b21b008dc3942eb2f970bcb9213816687889b31eb1e31aafaf28

  • SHA512

    5e97965b83f0244c2ce37ae193e45db18dfda1427a03d98da602af3dc334dbc160630e77af6b93ebaaa57b3d93a91c6b84662359bb90226c14955ccc5e1b8803

  • SSDEEP

    1536:ubbbbbbbb7JPbnCIl1Y5VNdvgQQ3MqqUM2Lkvd6:wzCIlY/dTQ3MqqMLkvd

Score
10/10
gandcrabdiscoverypersistence

Malware Config

Targets

    • Target

      2025-01-05_15b94992d6ef3b2b8740b13b241dcfa7_gandcrab

    • Size

      88KB

    • MD5

      15b94992d6ef3b2b8740b13b241dcfa7

    • SHA1

      8504b77cd779184b77e6a2be586ac3e05d7fbc0d

    • SHA256

      aa058fe08048b21b008dc3942eb2f970bcb9213816687889b31eb1e31aafaf28

    • SHA512

      5e97965b83f0244c2ce37ae193e45db18dfda1427a03d98da602af3dc334dbc160630e77af6b93ebaaa57b3d93a91c6b84662359bb90226c14955ccc5e1b8803

    • SSDEEP

      1536:ubbbbbbbb7JPbnCIl1Y5VNdvgQQ3MqqUM2Lkvd6:wzCIlY/dTQ3MqqMLkvd

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks