Videos
Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.
- Distribution Method : Unknown
- MD5 : 249442eec621c0316377a8774eba002b
- Major Detection Name : Trojan:Win32/BunituCrypt.RM!MTB (Microsoft), Ransom.Win32.BACUCRYPT.SMYPCD2T (Trend Micro)
- Encrypted File Pattern : .cuba
- Payment Instruction File : !! READ ME !!.txt
- Major Characteristics :
- Offline Encryption
- Block processes execution (msdtc.exe, sqlagent.exe, sqlbrowser.exe, sqlceip.exe, sqlservr.exe, sqlwriter.exe etc.)
- Stop multi services (MSExchangeAntispamUpdate, MSExchangeDiagnostics, MSExchangeIS, MSExchangePOP3BE, MySQL, SQLSERVERAGENT etc.)