The Latest in IT Security

Locky ransomware adds anti sandbox feature (updated)

31
Aug
2017
Locky ransomware adds anti sandbox feature (updated)

untitled-design-900x506

The Locky ransomware has been very active since its return which we documented in a previous blog post. There are several different Locky campaigns going on at the same time, the largest being the one from affiliate ID 3 which comes with malicious ZIP containing .VBS or .JS attachments.

Malwarebytes researcher Marcelo Rivero discovered a trick documented before with the Dridex Trojan employed by Locky’s affiliate ID 5 to bypass automated analysis done via sandboxes.

Read More

Leave a reply


Categories

THURSDAY, DECEMBER 14, 2017

Featured

Archives

Latest Comments

Social Networks