Overview

overview

10

Static

static

10

2025-04-11...ys.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-11_256e8c835e8e059ab67da6cd5349640c_elex_gandcrab_rhadamanthys

  • Size

    80KB

  • Sample

    250411-hcr7wasjv3

  • MD5

    256e8c835e8e059ab67da6cd5349640c

  • SHA1

    d120a5bb81253f34915788fe69840ff8774aa9f9

  • SHA256

    8f5e10f3de6c82b91b81b7fe3d8443092272bdc835fd31adfa3827cca8f324da

  • SHA512

    1efeb435082c4136d9531f29baceb411d75d14df6fe907c5a2cbe19ee1bb4037dc3ad35a74dc7ebf4b9aff2e6cc86b1073cbdd07f1d5de4dc17814173a11178b

  • SSDEEP

    1536:G55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rb:sMSjOnrmBTMqqDL2/mr3IdE8we0Avu5X

Score
10/10
gandcrabdiscoverypersistence

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Targets

    • Target

      2025-04-11_256e8c835e8e059ab67da6cd5349640c_elex_gandcrab_rhadamanthys

    • Size

      80KB

    • MD5

      256e8c835e8e059ab67da6cd5349640c

    • SHA1

      d120a5bb81253f34915788fe69840ff8774aa9f9

    • SHA256

      8f5e10f3de6c82b91b81b7fe3d8443092272bdc835fd31adfa3827cca8f324da

    • SHA512

      1efeb435082c4136d9531f29baceb411d75d14df6fe907c5a2cbe19ee1bb4037dc3ad35a74dc7ebf4b9aff2e6cc86b1073cbdd07f1d5de4dc17814173a11178b

    • SSDEEP

      1536:G55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rb:sMSjOnrmBTMqqDL2/mr3IdE8we0Avu5X

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v16

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.