Become a fighter against malware and join the forum at SensorsTech!  The SensorsTech’s forum is the place where you can solve your PC issues and educate yourself about malware. You are welcome to discuss various security topics with our professional team and other users like you! To unlock all features of the forums, you have to create an account. Otherwise, you can only browse the topics without taking part in the discussions. To leave a comment or ask your questions, read our Registration Agreement and create your free account here.

*

Execute

  • *****
  • 264
  • +45/-0
  • Your friendly neighbourhood IT guy
      • View Profile
.aesir is the new extension for Locky ransomware
« on: November 21, 2016, 05:05:42 pm »
Locky ransomware now encrypts users' files with the extension .aesir.

That word stands as a collective word for a pantheon of Old Norse Gods,
including Odin, Frigg, Thor, Baldr and Týr.
The other pantheon of Gods is called Venir.
Æsir can be translated as "Gods", because it is in plural.

This newest version of the Locky ransomware utilizes C2 (Command and Control) servers.
The infection is spread with fake documents, .js and .dll files, via spam e-mails.
New spam e-mail campaigns are spreading the infection very quickly.
You can read more about it in the article for the New Locky Ransomware with .aesir Files.

You should be careful around suspicious e-mails and such of unknown origins.
Backup your data and be prepared, because ransomware creators try to think of more ways to spread their malware.
This topic is not only about informing users about the new threat, but open for discussion.
You can ask questions, suggest ideas for coping with the threat or
share how you got infected and tell to others what they should avoid doing.

Best Regards,
Execute
« Last Edit: November 21, 2016, 05:22:31 pm by Execute »