Overview

overview

10

Static

static

10

2024-06-18...ab.exe

windows7-x64

10

2024-06-18...ab.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-18_cebeae1d33d491080543e23611710876_gandcrab

  • Size

    99KB

  • MD5

    cebeae1d33d491080543e23611710876

  • SHA1

    ea34e12b54f2cf42f5c7728a1daecde0a2539bd9

  • SHA256

    2258d167c1e46f5f3399534bc25e413e43c741da36bcd833ab69732fc1d1482a

  • SHA512

    45f52588b14cf66f0cbb4654489c0e25099b2aac7ccac95bdf066451f47868d6ba9b86fa98e325c92461c4a038f45c4172acee2a653ba25f76d8128e3712c30c

  • SSDEEP

    3072:xMSjOnrmBIMqqDL2/mr3IdE8we0Avu5r++ygLIaaypQ8CrS6:xXjOnr6jqqDL6aprYS6

Score
10/10
upxgandcrab

Malware Config

Extracted

Family

gandcrab

C2

http://gdcbghvjyqy7jclk.onion.top/

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
    gandcrab
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-18_cebeae1d33d491080543e23611710876_gandcrab
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections