[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Ransomware Deception Tactics Part 1

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Ransomware Deception Tactics Part 1
From: malvuln <malvuln13@xxxxxxxxx>
Date: Thu, 24 Nov 2022 22:29:13 -0500

Did you know? some Ransomware like CONTI and others will FAIL to encrypt
non PE files that have a ".exe" in the filename.

Test.exe.docx
Test.exe.pdf

Conti MD5: 9eb9197cd58f4417a27621c4e1b25a71

ATOMSILO MD5: 5559e9f5e1645f8554ea020a29a5a3ee
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Prev by Date: [FD] Trojan.Win32.DarkNeuron.gen / Named Pipe Null DACL
Next by Date: [FD] Win32.Ransom.Conti / Crypto Logic Flaw
Previous by thread: [FD] Trojan.Win32.DarkNeuron.gen / Named Pipe Null DACL
Next by thread: [FD] Win32.Ransom.Conti / Crypto Logic Flaw
Index(es):
- Date
- Thread