New Ransomware Apocalypse Prompts Victim to Email Hacker for Instructions
June 14, 2016
A new ransomware called Apocalypse was recently discovered by security researchers at Emsisoft. According to their findings, the ransomware encrypts data, appends the .encrypted extension to them and then requires the victim to email the hacker for ransom instructions. For example, if Apocalypse encrypts a file called ‘test.jpg’, a ‘test.jpg.encrypted’ file and ‘test.jpg.encrypted.How_to_Decrypt.txt’ file will be created.
The ransomware will also create an autorun entry that points to C:\Program Files (x86)\windowsupdate.exe so that the ransomware is started when a user logs into Windows. Once it runs, it will display a lock screen that says: If you are reading this message, all the files in this computer have been crypted!![sic] documents, pictures, video, audio, backups, etc. If you want to recover your data, contact the email below. Email decryptionservice@mail.ru. We will provide decryption software to recover your files. If you don’t contact before 72 hours, all data will be lost forever. Users can reboot into safe mode to bypass the lock screen and run the decryptor or use the free tools made available for affected users to get their files back.HIDE
Like it? Add this infographic to your site:
1. Click on the box below. 2. Press Ctrl+A to select all. 3. Press Ctrl+C to copy. 4. Paste the code into your page (Ctrl+V).
Image will appear the same size as you see above.
Recent Posts
- From Defense to Offense: The Misuse of Red Teaming Tools by Cybercriminals
- Unchaining Blockchain Security Part 1: The Emerging Risks of Private Blockchains in Enterprises
- API Security Exposed: The Role of API Vulnerabilities in Real-World Data Breaches
- Countering AI-Driven Threats With AI-Powered Defense
- Intercepting Impact: 2024 Trend Micro Cyber Risk Report