New Ransomware Apocalypse Prompts Victim to Email Hacker for Instructions
June 14, 2016
A new ransomware called Apocalypse was recently discovered by security researchers at Emsisoft. According to their findings, the ransomware encrypts data, appends the .encrypted extension to them and then requires the victim to email the hacker for ransom instructions. For example, if Apocalypse encrypts a file called ‘test.jpg’, a ‘test.jpg.encrypted’ file and ‘test.jpg.encrypted.How_to_Decrypt.txt’ file will be created.The ransomware will also create an autorun entry that points to C:\Program Files (x86)\windowsupdate.exe so that the ransomware is started when a user logs into Windows. Once it runs, it will display a lock screen that says: If you are reading this message, all the files in this computer have been crypted!![sic] documents, pictures, video, audio, backups, etc. If you want to recover your data, contact the email below. Email firstname.lastname@example.org. We will provide decryption software to recover your files. If you don’t contact before 72 hours, all data will be lost forever. Users can reboot into safe mode to bypass the lock screen and run the decryptor or use the free tools made available for affected users to get their files back.
Like it? Add this infographic to your site:
1. Click on the box below. 2. Press Ctrl+A to select all. 3. Press Ctrl+C to copy. 4. Paste the code into your page (Ctrl+V).
Image will appear the same size as you see above.
Posted in Cybercrime & Digital Threats, Ransomware, Cybercrime
- Ransomware Spotlight: TargetCompany
- Email Threat Landscape Report: Cybercriminal Tactics, Techniques That Organizations Need to Know
- Preventing an Imminent Ransomware Attack With Early Detection and Investigation
- Inside the Halls of a Cybercrime Business
- Securing Cloud-Native Environments with Zero Trust: Real-World Attack Cases