Jump to content

kyhwana

Members
  • Content Count

    1
  • Joined

  • Last visited

Community Reputation

0 Neutral

About kyhwana

  • Rank
    New Member
  1. See http://imgur.com/a/b9oEa. Last image is after the reboot. Looks like it stops it from cryptolocking all the files at run time, but despite the popup, the UI doesn't show anything in quarantine. It also doesn't seem to remove the autorun registry entry, which I guess is why it can't stop cryptowall on a reboot after infection. The sample I used was this: https://malwr.com/analysis/MDQ2YjNhMmQzNTM3NGIyODk0MzRhZGYyMWViNTdkNWM// https://www.hybrid-analysis.com/sample/50b011838c687a7c1cd225c23522ee969596735248e040a6561d07533bd95dd6 It looks like a newer variant of cryptowall4? https://mal
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.