General
-
Target
2025-01-05_ad10348127c2e4a4129e4a2199dccbe8_gandcrab
-
Size
346KB
-
Sample
250105-l3kr9ssqfl
-
MD5
ad10348127c2e4a4129e4a2199dccbe8
-
SHA1
67694044e482e882a1c079d6de133b2f39552515
-
SHA256
3dc4ad2974e393c7aace6f053a7fd459a1bdbfdf37ca788f806dc9d97e20aaea
-
SHA512
c58e630cf1292909e3f0a3210a1ecf28ec1a0b6d61a80ede6f21d1dbc848f8298f93eb1848b24ef05d453dff101b63eb86211b35a1cfa1fcc62813c0117a15d1
-
SSDEEP
3072:hMSjOnrmBxMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdMEa83Rg0EkmlB1yihDNC+:hXjOnr6aqqDL64vdyQmIihDNCwQIPP
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2025-01-05_ad10348127c2e4a4129e4a2199dccbe8_gandcrab
-
Size
346KB
-
MD5
ad10348127c2e4a4129e4a2199dccbe8
-
SHA1
67694044e482e882a1c079d6de133b2f39552515
-
SHA256
3dc4ad2974e393c7aace6f053a7fd459a1bdbfdf37ca788f806dc9d97e20aaea
-
SHA512
c58e630cf1292909e3f0a3210a1ecf28ec1a0b6d61a80ede6f21d1dbc848f8298f93eb1848b24ef05d453dff101b63eb86211b35a1cfa1fcc62813c0117a15d1
-
SSDEEP
3072:hMSjOnrmBxMqqDL2/mr3IdE8we0Avu5r++ygLIaagvdMEa83Rg0EkmlB1yihDNC+:hXjOnr6aqqDL64vdyQmIihDNCwQIPP
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-