相关阅读:Chaos勒索软件家族详情
【家族名】
Win32/Ransom.Anti-us
[平台] / [主类型] . [家族名]
平台类型 : Win32 Win64
威胁类型 : Ransom
【是否支持解密】
360解密大师:暂不支持
在线解密:暂不支持
【被加密文件】
被加密文件后缀格式: 修改文件后缀为.anti-us
【勒索提示信息】:
文件名:read-it
文件内容 :
-------------------------------------------------------------------------------
your computer has been infected by the anti-us ransomware, your files, documents, images, videos, and more have been encrypted, you cannot unencrypt your files, without our software, our software price is $8000, our bitcoin address is: 17CqMQFeuB3NTzJ2X28tfRmWaPyPQgvoHV, please send us the transaction info from your wallet, and from https://www.blockchair.com to our email cryptohacker05@gmail.com, to pcrisk and other security researchers, go jump off a damn bridge motherfuckers, to the FBI and the goverment, go jump off a bridge as well motherfuckers, I will be hacking computers, robbing gas stations, stealing PCs and other shit, I will be stealing all the drinks, food, and other shit, I will be the worst civilian the US has ever delt with, I will be also be making illegal WiFi generaters, so that I don't have to use those damn ISPs, I will be robbing gas stations at night, this will be the worst robbery spree you will ever see, watch as I cryptohacker05, steals every thing from gas stations after I shut down the cameras, I will be smashing them, after that, I will be infecting the hard drives, and I may sell the shit I stole, have a fun day, finders keepers, losers weepers motherfuckers, FUCK THE US GOVERMENT, my future, is full of crime, from cryptohacker05@gmail.com, aka the one and only anti-us ransomware developer ever alive
-------------------------------------------------------------------------------
【防护建议】
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
|
|
|
|
评论
直达楼层