Galacti-Crypter v1.8 Ransomware (ENCx45cR<Original Filename>.<Original Extension>) - Videos - CheckMAL

Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

Distribution Method : Unknown

MD5 : 50f1d5d26afe60b31b5e88cc2dd93898

Major Detection Name : MSIL/Gen.LO!tr.ransom (Fortinet), Ransom.Galacti (Malwarebytes)

Encrypted File Pattern : ENCx45cR<Original Filename>.<Original Extension>

Malicious File Creation Location :
- C:\Users\%UserName%\AppData\enc.txt
- C:\Users\%UserName%\AppData\tm.txt

Major Characteristics :
- Offline Encryption
- Generate a fake "Error Occurred" error window