Anatova ransomware: A new type of ransomware is released disguised as an app or game, tricking its victims into thinking they are installing something completely harmless on their computer.
Anatova ransomware first appeared on 1 in January and the code it contains suggests that its developers are very experienced.
It has the ability to quickly transform, since new hidden tactics and new propagation mechanisms can easily be added. Anatova ransomware comes equipped with very strong encryption, using two RSA keys to lock its victims' records.
Because of these capabilities and the way it is developed malicioussoftware, the security researchers McAfee, who discovered the ransomware, warn that Anatova is a project of skilled developers and is a very serious threat.
“Anatova has the potential to become very scalable with its modular architecture, which means new features can be easily added. The malware is written by experienced developers who have built in enough features to make sure that standard ransomware protection methods can be bypassed and are ineffective,” says Christiaan Beek, head investigations by McAfee.
The highest number of victims to date are in the US, Belgium, Germany, France, the UK and other European countries.
Anatova is released disguised as a free game or software which is intended to lure unsuspecting users into downloading and installing the ransomware. But the researchers report that it could also spread in many different ways in the future.
Malicious software after installing it into a system creates two RSA keys using a crypto API that will encrypt all the strings before creating the random keys to encrypt the victim's system.
Those who get infected with Anatova will also see the ransom note that requires about 700 dollars to decrypt the files.
The note gives a wallet address for payment in cryptocurrencies, and states somewhat ironically "nothing personal, only business".
One last thing to mention is that Anatova ransomware does not pollute systems from Russia, Syria, Egypt, Morocco, Iraq and India.
______________________
- Deep Learning who I kill in the event of an accident
- Mark Zuckerberg: announced public debates on 2019
- Microsoft agreement 1,76 twice with the Pentagon
- NSA capture leaker with the help of Kaspersky Lab