[2018-09-25] FalloutEK->SAVEfiles Ransomware

September 25, 2018

Overview

Saz file is 2018-09-25_14-47-25.saz

(↓Analysis result using EKFiddle)

Malware

SAVEfiles Ransomware

446f4aff5e8617a75939deeddfec9c0cd2434f3a06f63ae037594b93c0f6ee61
[Hybrid-Analysis] [VirusTotal]

Traffic-Chain

http[:]//fincont.trade/tv?source=1933927-3854662911-0
↓
[Fallout Exploit Kit][Landing Page]
http[:]//privategame.fun/8643/Droppy-4471/AYBv6hS/bighted.html
↓
[Fallout Exploit Kit][Malware Payload]
http[:]//privategame.fun/xftAJ7T9O9/bashmuric/benzoyls.phtml