gandcrab

Sharing

Copy URL

Twitter E-mail

General

Target

MozillaBuildSetup-Latest.exe
Size

133.8MB
Sample

240623-vnl68a1fnj
MD5

1557189ae5a5e3ac6cd53a4a1c475693
SHA1

2450ac6daa6ef8fbd92a612f371c911df037c6e6
SHA256

982d008f2b1ce96f0b4d41e5d6faa0da2067792e88aba8fa2e20b1ab73ce2147
SHA512

766daa5fb1e36933b4e2603858b569a78481d0138683ba9386b282b1c0a8aeb30712f8f35953fd4fd6679094e499831308f0b055e749e6f5050a83564774120f
SSDEEP

3145728:M65cbQyhxKCvetfkoGByxEVvy+b5qkGrjZmX5c6/0VUnGAJXB+:HtiKb3raf1qkUjZcN/0VUlJXE

Score

10^/10

Malware Config

Targets

- Target
  
  MozillaBuildSetup-Latest.exe
- Size
  
  133.8MB
- MD5
  
  1557189ae5a5e3ac6cd53a4a1c475693
- SHA1
  
  2450ac6daa6ef8fbd92a612f371c911df037c6e6
- SHA256
  
  982d008f2b1ce96f0b4d41e5d6faa0da2067792e88aba8fa2e20b1ab73ce2147
- SHA512
  
  766daa5fb1e36933b4e2603858b569a78481d0138683ba9386b282b1c0a8aeb30712f8f35953fd4fd6679094e499831308f0b055e749e6f5050a83564774120f
- SSDEEP
  
  3145728:M65cbQyhxKCvetfkoGByxEVvy+b5qkGrjZmX5c6/0VUnGAJXB+:HtiKb3raf1qkUjZcN/0VUlJXE
Score

10^/10

gandcrab backdoor ransomware
- Gandcrab
  Gandcrab is a Trojan horse that encrypts files on a computer.
  ransomware backdoor gandcrab
behavioral1 behavioral2
- Target
  
  python3/tcl/tk8.6/demos/textpeer.tcl
- Size
  
  2KB
- MD5
  
  db84ac00b54e9685430d91087dc43bf8
- SHA1
  
  b0dd9e005fb0b8c18e110132744e9c8513ca83a1
- SHA256
  
  440f52dbedf0c2e4754c93971d478425c9e78f71db19df3274720903647c9e15
- SHA512
  
  898d8e30ad084ba977da714bafdd0326b20377d3ae54074b307b10777ceae9f83acfd621db8dd9168309283b3c41a9b58c2bae714ec7e3ec685aec7a668e703d
Score

1^/10
behavioral3 behavioral4
- Target
  
  python3/tcl/tk8.6/demos/timer
- Size
  
  1KB
- MD5
  
  a26af3ab4c3ba227938322246df69ff7
- SHA1
  
  155d209beab0c26ed0dc77d44b6ca8dfd51f9133
- SHA256
  
  4a0410f3c13a47eb52d55e781fb54b13d5a0dbeb88ba88ea6e9e74019ae21ddc
- SHA512
  
  a8f65b0c04a9b173d6e823ffa707912f3398ef68fa01a52f95ff8e943da43d3edbeccbde7bd9591d0d012b04a62e111b45f50e9b8d4fcae1ccf93b3319c0e262
Score

1^/10
behavioral5 behavioral6 behavioral7 behavioral8
- Target
  
  python3/tcl/tk8.6/demos/ttkbut.tcl
- Size
  
  3KB
- MD5
  
  916f3f8e35ab802c643d82df4cdc1ec1
- SHA1
  
  5bd51dd5f7c76124f7ea1d3563da2862ae3314a3
- SHA256
  
  e1e26aa0622d79b6532b54e4ece6d9136d36c96dd6dacea1eddebf2bb07cb9cc
- SHA512
  
  940d68d71d5e196d67d515fbf0b5e2230daef50355cffd3eee695293900fdeb3898bcba63a83628a7bb88e96a921e4158ae8b661205e15377880d07cf1552f04
Score

1^/10
behavioral10 behavioral9
- Target
  
  python3/tcl/tk8.6/demos/ttkpane.tcl
- Size
  
  4KB
- MD5
  
  28c707a2cdbf91ce33938c7a301c9178
- SHA1
  
  b8dc280ffa2c449242d777fd1decb765ce189f6e
- SHA256
  
  e1c472dcc79ab4826796848e320fc8769bc9daf6fe0378995054686a006d2c14
- SHA512
  
  05afead5a7d9029453bf208fb9437c1db26242d334732067ce7c42a4e9aa33969dcfd1cbf06ca14b2f8e4c572cb3b8351eb62d64152084ac1ee2a8fb6285601f
- SSDEEP
  
  96:vOKwhUQKb0vA0vJWZSuKcZS3M/DFZSq0C0LfvOdpbxpjtu:vOKPSFF4xY+Ta
Score

1^/10
behavioral11 behavioral12
- Target
  
  python3/tcl/tk8.6/demos/twind.tcl
- Size
  
  11KB
- MD5
  
  dca4731b8c909eb10453b4125b049b14
- SHA1
  
  3da186293b4bf4b5ac8405e37a8b831e4e90d95d
- SHA256
  
  36b00de2b67c0974873787b4ff033f169f7201ab88e926fb4058f5cbb0298284
- SHA512
  
  8031b7ef4445e57f40286aa1401a5bd76daa93dc60916a25b70be1c0f1a4fe588682ccea49aabada27b5770f7f95468562f8866290fab0a3a94f5b3112a2088b
- SSDEEP
  
  192:mOPHlHxfNieTvTFQCamBHN1sYXdgKbfNTXEs4S8xqd+1cP7ZvhqcYDmA3f2bwSFT:m0FRUerTFQCFtPdRNTXEs4S8KP7VwcTr
Score

1^/10
behavioral13 behavioral14
- Target
  
  python3/tcl/tk8.6/demos/unicodeout.tcl
- Size
  
  4KB
- MD5
  
  3a6f391b44546c9372f2008028e12fd9
- SHA1
  
  13d060581e3c5c5fbeca864506da446f4502cfc9
- SHA256
  
  a5cc2cd45093b91cefaca4842055b89aa193cdc8a8c21ac5b049d15a7a1d044d
- SHA512
  
  18d857fe0483870986f5b4fee8889567032cc40aa1f39efd72a8194a480205b1a715df3faa1a33f6a72e32f5c4bd94ff9fee5bfb38114f478a191601adcf199f
- SSDEEP
  
  96:Zs/OhVL8i/JTDEMxqRrrPqZ9Du/2ClJoHvVDIHtjX36YUYukoOn:WOP4i9rxyrb+Ju5JoPVDIH5n6Yqa
Score

1^/10
behavioral15 behavioral16
- Target
  
  python3/tcl/tk8.6/demos/widget
- Size
  
  24KB
- MD5
  
  a0881849f2343fcde372031544d424d0
- SHA1
  
  dfc5d37547a31d6b14ab841fad69678fb0bc3aef
- SHA256
  
  01bef967805998261dc10784f974d86679a8c2d51b49cd1461ffc9b9340a034f
- SHA512
  
  ed1fb4f612b93269f7497c37872c59e1e2543fe444253735285ea16e7bc261c51d91b834df02e28ce605e848fa7ce6e03462761ce54db5715dbd6e13dcab087c
- SSDEEP
  
  768:mwGo9ErjOhUUfy24K73DRxjwPxHCSe8mI:mwr4K7TfjixHNe8mI
Score

1^/10
behavioral17 behavioral18 behavioral19 behavioral20
- Target
  
  python3/tcl/tk8.6/entry.tcl
- Size
  
  17KB
- MD5
  
  f109865c52d1fd602e2d53e559e56c22
- SHA1
  
  5884a3bb701c27ba1bf35c6add7852e84d73d81f
- SHA256
  
  af1de90270693273b52fc735da6b5cd5ca794f5afd4cf03ffd95147161098048
- SHA512
  
  b2f92b0ac03351cdb785d3f7ef107b61252398540b5f05f0cc9802b4d28b882ba6795601a68e88d3abc53f216b38f07fcc03660ab6404cf6685f6d80cc4357fc
- SSDEEP
  
  384:mDfyRIlBk3yrt8qLjtpa+qh+rA4rsWRWrrMUtCPnkKYNlPp64ZnCD:mDfyRIlBk3yJ8mtpaplcp6o
Score

1^/10
behavioral21 behavioral22
- Target
  
  python3/tcl/tk8.6/focus.tcl
- Size
  
  4KB
- MD5
  
  63b219be9aff1de7de2baf0e941cae38
- SHA1
  
  a2febb31380e12ff01e6f641fe8b4f815941462f
- SHA256
  
  8872f236d7e824aec0acd4bacc00fdd7ec9bc5534814ecf2160610c10647b7c5
- SHA512
  
  057700f8fde4b7c3d7ab7cefd6c531060bf2b1b3b727cad6a37ecd42ebc557765d94b83add438bd5afa1f6f919d80ae755a8d98918981167b871f31ad42fdf5e
- SSDEEP
  
  96:J3MRZZ7HWb/6OgRKjtS6Mn9GRZZ7HWb2Y6aO6R5nh76SMoB2kd82KtTpsi2D0DSn:CRZdPul1RZdFaRf0XoB2gZKZpsi2pn
Score

1^/10
behavioral23 behavioral24
- Target
  
  python3/tcl/tk8.6/fontchooser.tcl
- Size
  
  16KB
- MD5
  
  a11f7d5f858e28d67f5391454401cae8
- SHA1
  
  8acae04be25249a3b7524b2c4ac03bf9fcf081d7
- SHA256
  
  48c6d9eabb028a57291c009e1b02756d1ea6a18f9aca7066c59bc3c5d881d3a6
- SHA512
  
  e8d9b11208642c62166c62af605341ec7beef4e178dd3fcc9e72e4436be1f4e5d1952b78c5fa206d85d61693922fe26acaf9267725387f2a7a56ee2d95a6d69a
- SSDEEP
  
  384:aUcEQ2Mq56jP/oVR6EcW0i9cWHKVo8q5F2Zsb9M:aUcEQ2Mq56jP/oVR6Ec5i9hKSxFC
Score

1^/10
behavioral25 behavioral26
- Target
  
  python3/tcl/tk8.6/iconlist.tcl
- Size
  
  17KB
- MD5
  
  4fde770e3dff8b95295fb887f510534b
- SHA1
  
  5356ba885d61910a34756188d676facd0353ed8a
- SHA256
  
  c8b4b2130c6ad658331c59f41d8bdbab44e0011781214a0b0be78c4920536b2e
- SHA512
  
  30bf50137f18643fc3622eaa195ec7e0f21b77980c16db54cca1b7aefa17ca4ce8e6f82d6c8f4a0dfb6dd78d4f115d3a5d8da7573a928af9c1a92727bd4f0691
- SSDEEP
  
  384:FNP8nO9Wo8k5NfQH8EsOy8WMVbcfNCvJshPOw7jW:FNf8uNfQH89Z8WMVY15DW
Score

1^/10
behavioral27 behavioral28
- Target
  
  python3/tcl/tk8.6/listbox.tcl
- Size
  
  14KB
- MD5
  
  804e6dce549b2e541986c0ce9e75e2d1
- SHA1
  
  c44ee09421f127cf7f4070a9508f22709d06d043
- SHA256
  
  47c75f9f8348bf8f2c086c57b97b73741218100ca38d10b8abdf2051c95b9801
- SHA512
  
  029426c4f659848772e6bb1d8182eb03d2b43adf68fcfcc1ea1c2cc7c883685deda3fffda7e071912b9bda616ad7af2e1cb48ce359700c1a22e1e53e81cae34b
- SSDEEP
  
  384:apDYV5Yupn5OcckwBv3HCpg2J8JvJBfWeZhXkz+WkHGowv:aPPkevB2JuvJ9D3XmSc
Score

1^/10
behavioral29 behavioral30
- Target
  
  python3/tcl/tk8.6/megawidget.tcl
- Size
  
  9KB
- MD5
  
  d83ed6ac2912900040530528a0237ab3
- SHA1
  
  2d18e42a8b96c3d71c1c6701010fdf75c1e6d5d8
- SHA256
  
  848258b946c002e2696ca3815a1589c8120af5cc41fbc11bbd9a3f5754cc21af
- SHA512
  
  00b4cd0d58029fc37820c163a4ae1dead22fb5c767bdc118659eace26d449c362189611dfb3fab1ac129fabfec2ce853ea2c10d418fae5aeb91ddc9330ff782d
- SSDEEP
  
  192:mvEEVwjVwqOpOLbkVAg/vyKEZ25YbKZbwrmQ:mvEEVwJwpALPgnyx25YGZkr3
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32