Balaclava Ransomware (.jerry_glanville_data@aol.com) - Videos - CheckMAL

Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

Distribution Method : Remote access through Remote Desktop Protocol(RDP) or Terminal Services

MD5 : a5f3760d7a35fef2dc9addee9cb91762

Major Detection Name : Trojan-Ransom.Win32.Crypmod.adhq (Kaspersky), Ransom_Crypmod.R03FC0DBO20 (Trend Micro)

Encrypted File Pattern : .jerry_glanville_data@aol.com

Payment Instruction File : HOW_TO_RECOVERY_FILES.txt

Major Characteristics :
- Offline Encryption
- Recovery Partition (A:\) and EFI System Partition (B:\) drives are activate.