The Fallout Exploit Kit which was previously know to be distributing
GandCrab Ransomware now switched to Kraken Cryptor ransomware which is available as Ransomware-as-a-Service (RAAS). Fallout install this malware by exploiting CVE-2018-8174 vulnerability. Legacy Version of Kraken Ransomware can be found
here.
Kraken Cryptor v1.5 Sample Signatures
Family: Win32:RansomX-gen [Ransom]
MD5: 6ac062d21f08f139d9f3d1e335e72e22
SHA256: 564154a2e3647318ca40a5ffa68d06b1bd40b606cae1d15985e3d15097b512cd
Kraken Cryptor v1.5 Sample Download
Kraken Cryptor v1.5 PCAP File
Kraken Cryptor Disguse as SUPERAntiSpyware Signatures
Family: FileRepMalware
MD5: e2251a00f5d025ee89228720dc5c2f65
SHA256: 9c88c66f44eba049dcf45204315aaf8ba1e660822f9e97aec51b1c305f5fdf14
Kraken Cryptor Disguse as SUPERAntiSpyware Download