General

  • Target

    2025-05-30_6a9cc3f8d416501195e9f4e40cd01907_elex_gandcrab

  • Size

    70KB

  • Sample

    250530-ayngtack5w

  • MD5

    6a9cc3f8d416501195e9f4e40cd01907

  • SHA1

    6da7eeb356dc1c9acceffa1f9dbefa8de1a8adb5

  • SHA256

    3a26ab2b849027740c16f63d655f3fc848b2821ba4a90f599b02289eab7d1bea

  • SHA512

    f7f37c7d69e5ce7c2fe70a1b4cb007d93d720a80d93928ee7916abfd9b26f9762e05dcf001ea66dfcd87684cb26f182aa37d6c9d005cb4e84a5416e300eead41

  • SSDEEP

    1536:EZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:bd5BJHMqqDL2/Ovvdr

Malware Config

Targets

    • Target

      2025-05-30_6a9cc3f8d416501195e9f4e40cd01907_elex_gandcrab

    • Size

      70KB

    • MD5

      6a9cc3f8d416501195e9f4e40cd01907

    • SHA1

      6da7eeb356dc1c9acceffa1f9dbefa8de1a8adb5

    • SHA256

      3a26ab2b849027740c16f63d655f3fc848b2821ba4a90f599b02289eab7d1bea

    • SHA512

      f7f37c7d69e5ce7c2fe70a1b4cb007d93d720a80d93928ee7916abfd9b26f9762e05dcf001ea66dfcd87684cb26f182aa37d6c9d005cb4e84a5416e300eead41

    • SSDEEP

      1536:EZZZZZZZZZZZZpXzzzzzzzzzzzzADypczUk+lkZJngWMqqU+2bbbAV2/S2OvvdZl:bd5BJHMqqDL2/Ovvdr

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • Gandcrab family

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks