- Distribution Method : Unknown
- MD5 : 75a4b7f9d98073f40d20f282c172196b
- Major Detection Name : Trojan.Ransom.JosepCrypt.A (BitDefender), Ransom_PESOJ.THEBBAH (Trend Micro)
- Encrypted File Pattern : .josep
- Malicious File Creation Location :
- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\RECOVERY.txt
- C:\Users\%UserName%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RECOVERY.txt
- Payment Instruction File : RECOVERY.txt
- Major Characteristics : Offline Encryption
List