General
-
Target
https://goo.su/5WBEji
-
Sample
240310-haeh1aec64
Score
10/10
Malware Config
Targets
-
-
Target
https://goo.su/5WBEji
Score10/10-
Cerber
Cerber is a widely used ransomware-as-a-service (RaaS), first seen in 2017.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Stops running service(s)
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory
-