JagerDecryptor Ransomware - IOC - File Details


1) Ransomware Name - JagerDecryptor

2) Encrypted Extensions - !ENC

3) Ransom Note File -
Important_Read_Me.html
Important_Read_Me.txt

4) Encrypted Algorithm -
RSA-2048
AES-256

5) Decryptor Link - NA


6) Screenshot -


7) Indicators of Compromise -
smartfiles9@yandex.com
xxxx://steamcards.xyz/ghzbvychhz/  - C2


8) File Details -
MD5 7d3d04681922c50a4d7e716ebc2fd3a6
SHA1 8cdf195cf57a871e13fd67a9a9ac6dd836b9e958
SHA256 7554a27519a2c960152cbe49ecef3948cf7bad12fa21cda62c8c236bbddb502d
ssdeep24576: XN + lSpYnaceEGmmgqPpcfiBKs7qN9zg5MFkXgMkBH1n1yr6hw1R0D + UlVkG0lC99: XsaQe9DhyVu4wZkTn1yp0D5sS1HpV9F
authentihash  460b110a9eb7320f9cd11b7a86e6e53883e35c35f48920f5291f34da68e0fe9b
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
The file size is 2.0 MB (2052096 bytes)
Win32 EXE file type
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono / .Net assembly

Comments