A new ransomware named “Locky” is currently circulating in the wild and making the headlines. There are some good reports regarding Locky ransomware already available over the Internet. This blog intends to focus on some technical areas that (we believe) have not been covered yet, namely, its domain generation algorithm, command and control communication, and file encryption.
For reference, the following is a screenshot of Locky’s Decrypter page (cropped to save space):
A Closer Look at Locky Ransomware | Fortinet Blog
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.