General
-
Target
d7f039531ce2db4f604ca2a40f8ca828_JaffaCakes118
-
Size
145KB
-
Sample
240910-kyqbhswamj
-
MD5
d7f039531ce2db4f604ca2a40f8ca828
-
SHA1
6c1c739d5d6fd0c04eac220b46646d3a5d5736c8
-
SHA256
45fe958019227f7a5e96d36b522178cd3ab24a99decfe517e5a2e91806c83016
-
SHA512
d095e6185ca9aa60df80066c8476604f1815ee9a4be3dd6c4fb8c4809f33974bb277da97d74fed11dbf7c9843ab6f48bb1312e2afefa148ecbb06d55bf551af0
-
SSDEEP
3072:t9T7LiXhC06rUwo3ueS8uYGEx8r8npU5f4rAFy/Vruanzg:/O0XrUwo65YGEeepUItru
Malware Config
Targets
-
-
Target
d7f039531ce2db4f604ca2a40f8ca828_JaffaCakes118
-
Size
145KB
-
MD5
d7f039531ce2db4f604ca2a40f8ca828
-
SHA1
6c1c739d5d6fd0c04eac220b46646d3a5d5736c8
-
SHA256
45fe958019227f7a5e96d36b522178cd3ab24a99decfe517e5a2e91806c83016
-
SHA512
d095e6185ca9aa60df80066c8476604f1815ee9a4be3dd6c4fb8c4809f33974bb277da97d74fed11dbf7c9843ab6f48bb1312e2afefa148ecbb06d55bf551af0
-
SSDEEP
3072:t9T7LiXhC06rUwo3ueS8uYGEx8r8npU5f4rAFy/Vruanzg:/O0XrUwo65YGEeepUItru
Score10/10-
Locky
Ransomware strain released in 2016, with advanced features like anti-analysis.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Sets desktop wallpaper using registry
-