General
-
Target
ac621018e2cec6132a11e46aaa5fbb25_JaffaCakes118
-
Size
73KB
-
Sample
240615-bqm2raxgnr
-
MD5
ac621018e2cec6132a11e46aaa5fbb25
-
SHA1
2878407ce8f09f4aeb55e463b4f1c65a86e8c1ad
-
SHA256
88e3fa9d75f59775d336a3ce9e4a7efddef1efcf1f68b3d4f6db190711049d7c
-
SHA512
9e18f2fc49fbc6f369d027a0a1c304ccf1607edef48ec8585e764fd05b7ad40d86ea9a3c704991cddc70e5bd4a56a5f1975bf643e88c0128db3c95062b1033ba
-
SSDEEP
1536:+55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:UMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
ac621018e2cec6132a11e46aaa5fbb25_JaffaCakes118
-
Size
73KB
-
MD5
ac621018e2cec6132a11e46aaa5fbb25
-
SHA1
2878407ce8f09f4aeb55e463b4f1c65a86e8c1ad
-
SHA256
88e3fa9d75f59775d336a3ce9e4a7efddef1efcf1f68b3d4f6db190711049d7c
-
SHA512
9e18f2fc49fbc6f369d027a0a1c304ccf1607edef48ec8585e764fd05b7ad40d86ea9a3c704991cddc70e5bd4a56a5f1975bf643e88c0128db3c95062b1033ba
-
SSDEEP
1536:+55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:UMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-