Videos
Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.
- Distribution Method : Unknown
- MD5 : eb24dc3985786edbbe30334afe033eff
- Major Detection Name : A variant of MSIL/Filecoder.CobraLocker.D (ESET), Ransom:MSIL/CobraLocker.DA!MTB (Microsoft)
- Encrypted File Pattern : <Original Filename>.<Original Extension>
- Malicious File Creation Location :
- C:\AmongUs.exe
- C:\LogonUI.exe
- Major Characteristics :
- Offline Encryption
- DaVinci Ransomware series
- Disable and Blocks Registry Editor (DisableRegistryTools) and Task Manager (DisableTaskMgr)