Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

  • Distribution Method : GitLab Unauthenticated Remote Code Execution (CVE-2021-22205)
 
  • MD5 : ae99e6a451bc53830be799379f5c1104
 
  • Major Detection Name : Trojan.NewCerber.A (BitDefender), Win32/Filecoder.Cerber.Z (ESET)
 
  • Encrypted File Pattern : .locked
 
  • Malicious File Creation Location :
     - C:\Windows\Temp\Rx2o7d.txt
     - C:\Windows\Temp\svcPrvinit.exe
 
  • Payment Instruction File : __$$RECOVERY_README$$__.html
 
  • Major Characteristics :
     - Offline Encryption
     - The Nederlands, Deutsch, Español, العربية, English, Italiano, 日本語, 中文, Türkçe, Português and Français users are targeted.

List

위로