Videos

Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

Ako Ransomware (.AKO)

  • Distribution Method : Unknown
 
  • MD5 : 21195dabaebdbf3c584025ac5b9b1b5c
 
  • Major Detection Name : Generic.Ransom.MedusaLocker.CCB34E4C (BitDefender), Ransom.Ako (Malwarebytes)
 
  • Encrypted File Pattern : .AKO
 
  • Payment Instruction File : AkoReadMe.html / AkoReadMe.txt
 
  • Major Characteristics :
     - Offline Encryption
     - Block processes execution (encsvc.exe, mysqld_opt.exe, ocssd.exe, outlook.exe, visio.exe, winword.exe etc.)
     - Disable system restore (vssadmin.exe Delete Shadows /All /Quiet, bcdedit.exe /set {default} recoveryenabled No, bcdedit.exe /set {default} bootstatuspolicy ignoreallfailures, wbadmin DELETE SYSTEMSTATEBACKUP, wbadmin DELETE SYSTEMSTATEBACKUP -deleteOldest, wmic.exe SHADOWCOPY /nointeractive)

List

위로