General
-
Target
2024-06-20_e0334cf273af73178234edd171341f15_gandcrab
-
Size
75KB
-
Sample
240620-nphrvszamr
-
MD5
e0334cf273af73178234edd171341f15
-
SHA1
cf1bbf9161c382a11328d6896f2348ed38d919c2
-
SHA256
835143d7eaabba5083619f4e3127e9f63e97cde739bda25f460e5ffb06b6a65c
-
SHA512
934c5aa6db1dfb20a4fdc41e73ffbbf37a858d2eae57fdc067bed4e6f9aa7fbf20075a97a78b2b30b9b9ea85413b786c6b3d84c74bab66147c77072274bb0692
-
SSDEEP
1536:Q655u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5f:QgMSjOnrmBTMqqDL2/mr3IdE8we0Avuh
Behavioral task
behavioral1
Sample
2024-06-20_e0334cf273af73178234edd171341f15_gandcrab.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-20_e0334cf273af73178234edd171341f15_gandcrab.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-06-20_e0334cf273af73178234edd171341f15_gandcrab
-
Size
75KB
-
MD5
e0334cf273af73178234edd171341f15
-
SHA1
cf1bbf9161c382a11328d6896f2348ed38d919c2
-
SHA256
835143d7eaabba5083619f4e3127e9f63e97cde739bda25f460e5ffb06b6a65c
-
SHA512
934c5aa6db1dfb20a4fdc41e73ffbbf37a858d2eae57fdc067bed4e6f9aa7fbf20075a97a78b2b30b9b9ea85413b786c6b3d84c74bab66147c77072274bb0692
-
SSDEEP
1536:Q655u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5f:QgMSjOnrmBTMqqDL2/mr3IdE8we0Avuh
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-