Videos
Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.
- Distribution Method : Installation via Ammyy malware
- MD5 : a04eb443870896fbe9a0b6468c4844f7
- Major Detection Name : Win-Trojan/Suspig7.Exp (AhnLab V3), Trojan-Ransom.Win32.KlopRansom.t (Kaspersky)
- Encrypted File Pattern : .CIop
- Payment Instruction File : CIopReadMe.txt
- Major Characteristics :
- Offline Encryption
- Use a "MEGAPOLIS SERVICES LTD" Digital Signatures
- Disable system restore (vssadmin Delete Shadows /all /quiet, bcdedit /set {default} recoveryenabled No, bcdedit /set {default} bootstatuspolicy ignoreallfailures)