Cerber Dropper Ransomware Analysis
voidsec2022-01-14T09:18:22+01:00Before the month ends (I’m sorry but my time was really sucked up by planning and developing the HackInBo’s CTF, that I hope you will enjoy) I would like to post this very small and brief analysis of the latest JavaScript dropper used by the Cerber Ransomware in its campaign.
I would also like to thank the Hacktive Security’s guys for the following sample:
Dropper:
MD5 afd5aa687ed3931d39f180f8e15500e1
SHA1 11460389a303e58086a2b7dbdab02437fb001434
SHA256 8b00174be5f9dd6a703bc5327e1be4161cd3922ca9a338889717370b53d4ca71
Cerber Ransomware:
MD5 2dd3bd1801989ff6625aa041761cbed3
SHA1 08f28d5a7d32528fdb2b386334669d6b2b4226cb
SHA256 a27c202bffde364fc385e41a244649e8e7baaec97c44c45cd02bb59642e1fb0e
This...