General
-
Target
a804d5b2613145c9aaad7b3b43eea868_JaffaCakes118
-
Size
590KB
-
Sample
240614-e7qezsygrl
-
MD5
a804d5b2613145c9aaad7b3b43eea868
-
SHA1
5bd91a4df91c139019dba734d9be2cab74a38d0b
-
SHA256
0bb97b1adbcab84e7b9e98d2d5ba7d7f5b204dafdf2458a7e07f279f0a284c2e
-
SHA512
570e687dc4eb4a66cea6543b80cc57092cdf3cacd86fc8493a6df10f7e2411fe895971bcee8ce87bf46f5b7a438c21d66f0e9a03ac936c780fc16dd7c7922bc6
-
SSDEEP
12288:TJ6wdOcYExLY0ebcIZ3pxCU5/2jEa95pY0Er4L1wD88P5DmWmeyOp:TJRLe0Mco3pxCU5/2jEafpVe4L1C88xl
Malware Config
Targets
-
-
Target
a804d5b2613145c9aaad7b3b43eea868_JaffaCakes118
-
Size
590KB
-
MD5
a804d5b2613145c9aaad7b3b43eea868
-
SHA1
5bd91a4df91c139019dba734d9be2cab74a38d0b
-
SHA256
0bb97b1adbcab84e7b9e98d2d5ba7d7f5b204dafdf2458a7e07f279f0a284c2e
-
SHA512
570e687dc4eb4a66cea6543b80cc57092cdf3cacd86fc8493a6df10f7e2411fe895971bcee8ce87bf46f5b7a438c21d66f0e9a03ac936c780fc16dd7c7922bc6
-
SSDEEP
12288:TJ6wdOcYExLY0ebcIZ3pxCU5/2jEa95pY0Er4L1wD88P5DmWmeyOp:TJRLe0Mco3pxCU5/2jEafpVe4L1C88xl
Score10/10-
Locky
Ransomware strain released in 2016, with advanced features like anti-analysis.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Deletes itself
-
Sets desktop wallpaper using registry
-