Check out our video library AppCheck defending against newest ransomware, automatic recovery and real-time backup.

  • Distribution Method : Unknown
  • MD5 : 3b6717ec0be808f5d41ac46ec0056aca
  • Major Detection Name : Ransom.Cryptolocker (Norton), Ransom.Win32.CRYPTOLOCK.SM (Trend Micro)
  • Encrypted File Pattern : .ReadMe
  • Payment Instruction File : Read_Me.txt
  • Major Characteristics :
     - Offline Encryption
     - Use an "Advanced Micro Devices, Inc." Digital Signatures
     - Recovery Partition (M:\) and EFI System Partition (N:\) drives are activate.
     - Terminate of many processes except system processes.