NUEVA VARIANTE DE RANSOMWARE SERPENT QUE AHORA SOLO AÑADE SERX A LOS CIFRADOSmsc hotline sat Wednesday, September 13, 2017 Tras tres mutaciones conocidas de este ransomware, la primera añadía SERPENT, la segunda SERP y la de ahora solo SERX Lo pasamos a controlar a partir del ELISTARA 37.48 de hoy El preanalisis de virustotal ofrece el siguiente informe: https://www.virustotal.com/es/file/e8fa0e12fc92576865ca64eaa9ec27e8c051f5502a4104ab3b1012b5f07ef909/analysis/1505316375/ y un VBS que forma parte del mismo (lanza el EXE) https://www.virustotal.com/es/file/78c982b881de68a35d6743507bea953f9df3ee33806a21889a0174f2a63e550a/analysis/1505316642/ Crea el fichero README_TO_RESTORE_FILES_Eo9.html con el texto del rescate. ==== NEED HELP WITH TRANSLATE? USE https://translate.google.com ==== ================ PLEASE READ THIS MESSAGE CAREFULLY ================ Your documents, photos, videos, databases and other important files have been encrypted! The files have been encrypted using AES256 and RSA2048 encryption (unbreakable) To decrypt your files you need to buy the special software 'Serpent Decrypter'. You can buy this software on one of the websites below. http://ewmnhkht.pw/BBF34C08-94C57F10-6BF06F4A-BE6135D0 http://bhumasht.pw/BBF34C08-94C57F10-6BF06F4A-BE6135D0 If the websites above do not work you can use a special website on the TOR network. Follow the steps below 1. Download the TOR browser https://www.torproject.org/projects/torbrowser.html.en#downloads 2. Inside the TOR browser brower navigate to : tprtai46zalunchc.onion/BBF34C08-94C57F10-6BF06F4A-BE6135D0 3. Follow the instructions to buy 'Serpent Decrypter' ================ PLEASE READ THIS MESSAGE CAREFULLY ================ Dicho texto tambien lo visualiza como fondo de pantella a través del fichero README_TO_RESTORE_FILES_Eo9.html Lo pasamos a controlar a partir del ELISTARA 37.48 que estará disponible en nuestra web a partir del 14-9 prox- saludos ms, 13-9-2017 |
RSS Noticias RSS Articulos RSS Descargas>> Compartircomparte con tus amigos, zonavirus.com |