Monday, July 25, 2016
Feedly:Fortinet Blog | News and Threat Research - All Posts. Insights on TorrentLocker
from Fortinet Blog | News and Threat Research - All Posts
Summary During the last weeks there have been several cases of international brand names being used by malware authors to propagate malware through phishing emails. These emails contain misleading links that download malicious Zip files, which, in turn, contain a JavaScript file that downloads the TorrentLocker ransomware. The malicious files have been detected as JS/Agent.2867!tr or JS/Nemucod.AFA!tr.dldr or JS/Nemucod.AFE!tr.dldr by the Fortinet Antivirus service. Since most of the available reports about this threat cover the encryption...