Posted on June 21, 2017
Name on Threat: Jaff Ransomware
Threat Vector: Email
IOC Hash: SHA1: 6ED179D6131F2407D19B37E31D4AA9C9709D4D99
Jaff ransomware is a file encrypting malware that arrives via download by special crafted macro documents from spam emails. It encrypts users data with a “.jaff” file extension and then requests the victim pay a ransom.
The following files are usually seen on the system:
- Encrypted files with extension “.jaff”