Cyware Daily Threat Intelligence March 26, 2018

Top Malware Reported in the Last 24 Hours
AvCrypt ransomware
A new ransomware, called AvCrypt, was discovered trying to uninstall the antivirus present on the computer before encrypting the user's files. This ransomware behaves like a wiper and removes numerous services while providing no contact information. It also checks which AV software is registered on the Windows Security Center and tries to remove it with another command.

Rapid 2.0 ransomware
Malicious authors have come up with a new, improved version of Rapid ransomware--called Rapid 2.0. The new version has a modified code routine that helps the hackers detect the users’ locale settings before launching an encryption operation. However, this ransomware has been found not encrypt data on PCs with Russian locale.

Sanny malware
FireEye, a cybersecurity company has found a new malware, dubbed Sanny, being distributed via malicious macro-based Microsoft Word documents. These malicious documents are being distributed in the form of relevant regional geopolitical issues, to governments across the world.



Tags


    • Share this blog:
    To enhance your experience on our website, we use cookies to help us understand how you interact with our website. By continuing navigating through Cyware’s website and its products, you are accepting the placement and use of cookies. You can also choose to disable your web browser’s ability to accept cookies and how they are set. For more information, please see our Privacy Policy.