General
-
Target
2024-06-24_8c818b3a71f375563a3e22a62ca4c0e9_gandcrab
-
Size
73KB
-
Sample
240624-s9eyxszfkc
-
MD5
8c818b3a71f375563a3e22a62ca4c0e9
-
SHA1
4a5d7853080f52f9dec17a2a0157842edfe132eb
-
SHA256
6806d4964e5a70bf21230a1faf31e639b213679f0d974f9810d403c6425e8a25
-
SHA512
94802d9fef1e597e914c41f5c66c99940e4c4852411541bc3173efb07bae5c0ab65ef973e213152597bd0a6ddd499d3c08e3695772416e866c3962b60a2e75d5
-
SSDEEP
1536:255u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:8MSjOnrmBTMqqDL2/mr3IdE8we0Avu5F
Behavioral task
behavioral1
Sample
2024-06-24_8c818b3a71f375563a3e22a62ca4c0e9_gandcrab.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-24_8c818b3a71f375563a3e22a62ca4c0e9_gandcrab.exe
Resource
win10v2004-20240226-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
2024-06-24_8c818b3a71f375563a3e22a62ca4c0e9_gandcrab
-
Size
73KB
-
MD5
8c818b3a71f375563a3e22a62ca4c0e9
-
SHA1
4a5d7853080f52f9dec17a2a0157842edfe132eb
-
SHA256
6806d4964e5a70bf21230a1faf31e639b213679f0d974f9810d403c6425e8a25
-
SHA512
94802d9fef1e597e914c41f5c66c99940e4c4852411541bc3173efb07bae5c0ab65ef973e213152597bd0a6ddd499d3c08e3695772416e866c3962b60a2e75d5
-
SSDEEP
1536:255u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:8MSjOnrmBTMqqDL2/mr3IdE8we0Avu5F
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-