Videos
Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.
- Distribution Method : Unknown
- MD5 : 5665127e5ab8c49462eff551c2b75f7c
- Major Detection Name : Trojan/Win32.GoRansom.R353511 (AhnLab V3), Ransom.Win32.VAGGEN.A (Trend Micro)
- Encrypted File Pattern : .VAGGEN
- Payment Instruction File : ABOUT_UR_FILES.txt
- Major Characteristics :
- Offline Encryption
- Reruns by adding "Internet Explorer Error Handling" in Task Scheduler to run "%APPDATA%\Byxor\polisen.exe" for every 3 minutes.