Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

  • Distribution Method : Mail attachment
 
  • MD5 : 7f4946dd9cf4bb646dbf5ce2cb945275
 
  • Major Detection Name : Trojan/Win32.VenusLocker.C1910120 (AhnLab V3), Trojan.Ransom.VenusLocker (ALYac)
 
  • Encrypted File Pattern :
         - Korean Filename : <Original Filename>.<Original Extension>.VenusLfS / <Original Filename>.<Original Extension>.VenusLpS
         - English Filename : <Random Filename>.VenusLf / <Random Filename>.VenusLp
 
  • Payment Instruction File : VenusLocker_ReadMe.txt
 
  • Major Characteristics :
         - Offline Encryption
         - LLTP Locker / TrumpLocker Ransomware series
     - Full / Partial encryption based on file extension
     - Provides payment Instruction messages in 6 languages including Korean and Japanese
     - Blocked to run after June 1, 2017
     - Changes desktop background(i.imgur.com/4XfhM36.jpg)

List

위로