Adversary
Pinchy Spider
ORIGIN
Eastern Europe, Russian Federation
Community Identifiers
GandCrab, REvil, Sodinokibi, GOLD GARDEN, GOLD SOUTHFIELD
Pinchy Spider is a criminal group behind the development and operation of the ransomwares GandCrab (between January 2018 and April 2019) and REvil (from April 2019). PINCHY SPIDER sells access to their ransomware under a partnership program with a limited number of accounts, often referred to as Ransomware-as-a-Service (RaaS). Though not used for GandCrab campaigns, PINCHY SPIDER also operates a dedicated leak site (DLS) to host data stolen from REvil victims to incentivize ransom payment.
Targeted Nations
Argentina
Australia
Belgium
Brazil
Canada
Chile
China
Europe
France
Germany
Hong Kong
Indonesia
Italy
Jamaica
Japan
Luxembourg
Mexico
Norway
Singapore
Slovenia
South Africa
South Korea
Spain
Sweden
Switzerland
Trinidad And Tobago
United Arab Emirates
United Kingdom
United States
Target Industries
- Academic
- Energy
- Financial Services
- Government
- Healthcare
- Manufacturing
- Media
- Retail
- Telecommunications
- Technology
- Agriculture
- Automotive
- Biomedical
- Chemicals
- Consulting & Professional Services
- Consumer Goods
- Cryptocurrency
- Food and Beverage
- Hospitality
- Industrials and Engineering
- Legal
- Logistics
- Maritime
- NGOs and Nonprofits
- Opportunistic
- Real Estate
- State & Municipal Government
Artwork

Crowdstrike Pinchy Spider
I have read and accept the terms and conditions
Explore Next Adversary