General

  • Target

    2025-05-19_288752cc2a91f1fa124f690d16e9453e_elex_gandcrab

  • Size

    70KB

  • Sample

    250519-qcaxlagn5x

  • MD5

    288752cc2a91f1fa124f690d16e9453e

  • SHA1

    ad0cdd184f3c476b30849c9665d91ce458e16359

  • SHA256

    cc3babe7bfac5a0b9b3c8b08113dc588d169e3f3cd9a6cbc264cb14aefde851a

  • SHA512

    f95d5a99ee72758b24f78754afdfdf52eaa97afd651780db470dec08942147125f056ff5f785646fb70bd33907231f855b1950d32341b8fa13df29d2bc4513c8

  • SSDEEP

    1536:LZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:Kd5BJHMqqDL2/Ovvdr

Malware Config

Targets

    • Target

      2025-05-19_288752cc2a91f1fa124f690d16e9453e_elex_gandcrab

    • Size

      70KB

    • MD5

      288752cc2a91f1fa124f690d16e9453e

    • SHA1

      ad0cdd184f3c476b30849c9665d91ce458e16359

    • SHA256

      cc3babe7bfac5a0b9b3c8b08113dc588d169e3f3cd9a6cbc264cb14aefde851a

    • SHA512

      f95d5a99ee72758b24f78754afdfdf52eaa97afd651780db470dec08942147125f056ff5f785646fb70bd33907231f855b1950d32341b8fa13df29d2bc4513c8

    • SSDEEP

      1536:LZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:Kd5BJHMqqDL2/Ovvdr

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • Gandcrab family

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks