gandcrab | 40d18d4bb1dd8e6e71f0c9aef5e9a7e8e8fe52500f69fe5fa828b859fd5ad290 | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-04-09...er.exe

windows10-2004-x64

Sharing

General

Target

2025-04-09_f11dcc899fada054f85692dd31b876ff_amadey_karagany_mafia_rhadamanthys_smoke-loader
Size

250KB
Sample

250409-kvjpkawjt3
MD5

f11dcc899fada054f85692dd31b876ff
SHA1

9fa0b816d3f63aaa93dc792ce96b6f3afdfc9832
SHA256

40d18d4bb1dd8e6e71f0c9aef5e9a7e8e8fe52500f69fe5fa828b859fd5ad290
SHA512

aa772d3870bf08a1f6ce0d0a499f15fe387183fbeb605b55637ebe1881bc99e9310691a41d440dccd8e032cf2b352c05c79c84d28317fab277bb799ed5ef6a43
SSDEEP

6144:c+YrOIBjaklexBgiJ8sTSIkIpxIp8mDtfPBRwasxXq:UOCjaklYgVIpxIhDtR

Score

10^/10

gandcrab backdoor discovery ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-04-09_f11dcc899fada054f85692dd31b876ff_amadey_karagany_mafia_rhadamanthys_smoke-loader.exe

Resource

win10v2004-20250314-en

gandcrab backdoor discovery ransomware

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2025-04-09_f11dcc899fada054f85692dd31b876ff_amadey_karagany_mafia_rhadamanthys_smoke-loader
- Size
  
  250KB
- MD5
  
  f11dcc899fada054f85692dd31b876ff
- SHA1
  
  9fa0b816d3f63aaa93dc792ce96b6f3afdfc9832
- SHA256
  
  40d18d4bb1dd8e6e71f0c9aef5e9a7e8e8fe52500f69fe5fa828b859fd5ad290
- SHA512
  
  aa772d3870bf08a1f6ce0d0a499f15fe387183fbeb605b55637ebe1881bc99e9310691a41d440dccd8e032cf2b352c05c79c84d28317fab277bb799ed5ef6a43
- SSDEEP
  
  6144:c+YrOIBjaklexBgiJ8sTSIkIpxIp8mDtfPBRwasxXq:UOCjaklYgVIpxIhDtR
Score

10^/10

gandcrab backdoor discovery ransomware
- GandCrab payload
- Gandcrab
  Gandcrab is a Trojan horse that encrypts files on a computer.
  ransomware backdoor gandcrab
- Gandcrab family
  gandcrab
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gandcrabbackdoordiscoveryransomware

© 2018-2025

Terms | Privacy