Locky Ransomware (<Random>-<Random>-<Random>-<Random>-<Random>.diablo6) - Videos - CheckMAL

Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

Distribution Method : Mail attachment (.vbs)

MD5 : 544bc1c6ecd95d89d96b5e75c3121fea

Major Detection Name : Trojan-Ransom.Win32.Locky.xtt (Kaspersky), Ransom:Win32/Locky (Microsoft)

Encrypted File Pattern : <Random>-<Random>-<Random>-<Random>-<Random>.diablo6

Payment Instruction File : diablo6.htm / diablo6-<Random>.htm

Major Characteristics :
- Offline Encryption
- Jaff Ransomware series
- Changes desktop background (C:\Users\%UserName%\Desktop\diablo6.bmp)