{"id":1549,"date":"2017-02-14T12:41:17","date_gmt":"2017-02-14T12:41:17","guid":{"rendered":"https:\/\/antivirus.comodo.com\/blog\/?p=1549"},"modified":"2020-08-18T23:15:21","modified_gmt":"2020-08-18T17:45:21","slug":"virlocker-ransomware-campaign-thats-giving-experts-headaches","status":"publish","type":"post","link":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/","title":{"rendered":"The New VirLocker Ransomware Campaign That&#8217;s Giving Experts Headaches&#8230;"},"content":{"rendered":"<p>Ransomware is sort of trending in the world of malware and cyber crimes. There have been many <a href=\"https:\/\/www.comodo.com\/landing\/comodo-conducts-webinar-on-protection-against-ransomware\/\" target=\"_blank\" rel=\"noopener\">ransomware attacks<\/a> in the recent past and many leading organizations across the world have had to face issues following such attacks. The latest news to hit as regards <a title=\"\u201dWhat is Ransomware?\" href=\"https:\/\/enterprise.comodo.com\/ransomware-attacks.php\" target=\"_blank\" rel=\"noopener\">ransomware<\/a> is about security researchers being concerned over a new distribution campaign for the VirLocker ransomware. The thing that makes VirLocker a real big issue is the fact that it can copy itself into infected files and can easily spread to other people or get copied onto a removable drive, thereby spreading fast and causing issues.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3089\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/virlocker-ransomware.jpg\" alt=\"virlocker ransomware\" width=\"650\" height=\"300\" srcset=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/virlocker-ransomware.jpg 650w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/virlocker-ransomware-300x138.jpg 300w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/virlocker-ransomware-225x104.jpg 225w\" sizes=\"auto, (max-width: 650px) 100vw, 650px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p><strong>Why VirLocker Ransomware is a Real Menace&#8230;<\/strong><\/p>\n<p>Ransomware victims can mostly bypass paying the ransom by restoring the backup of their data; they just need to have had a backup made sometime before the attack and infection. But when it&#8217;s the VirLocker that makes the strike, this option too is rendered impossible. This rather sophisticated <a href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/multi-layered-security-approach-ransomware\/\" target=\"_blank\" rel=\"noopener\">ransomware <\/a>would infect backups as well. As soon as VirLocker infects a system, it copies itself into every single file it comes across. Thus the backup too gets infected. Moreover, removable storage devices- external hard disks, USB sticks and even DVDs- that are connected to the system at that time or later too could get infected with this malware. It&#8217;s common to store backups in such storage devices and hence it&#8217;s likely that such devices would be connected to the system, following which they too could get infected. Thus all possibilities of restoring backup would be thwarted as well since no such media can be connected to the system in a secure manner post infection. There remains only one likely option, cleaning up the computer entirely. But that too won&#8217;t be easy since all downloaded tools too would get infected.<\/p>\n<p>Another cause of concern is that detecting VirLocker too becomes challenging. It can easily bypass most <strong><a href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/linux-trojan-self-deletes-elude-detection\/\" target=\"_blank\" rel=\"noopener\">antivirus<\/a> programs<\/strong> or <a href=\"https:\/\/www.comodo.com\/home\/internet-security\/anti-malware.php\" target=\"_blank\" rel=\"noopener\">anti-malware<\/a> programs.<\/p>\n<p>Developers of the VirLocker ransomware can simply keep track of every infected system and they can also validate if the victim had made a ransom payment in the past. The infected users would very soon be greeted with a ransomware message.<\/p>\n<p>The most notable aspect of VirLocker infection is that those users who have never dealt with this malware earlier won&#8217;t notice any issue. The malware will keep running in the background and the user would remain contented that his <a href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/antivirus-software-frequently-asked-questions\/\" target=\"_blank\" rel=\"noopener\">antivirus<\/a> software or anti-malware program is keeping him secure. VirLocker meanwhile infects all files and spreads as well, even through files sent via the social media to other people.<\/p>\n<p>Well, there is one trick that could help users bypass the ransom payment screen. They can enter any random 64-length string in the Transfer ID text box and VirLocker would assume a payment has been received. The infected user can then decrypt files, one at a time. This is not an easy process, but it definitely is better than paying the Bitcoin ransom. The OS can be freshly installed after all files are decrypted.<\/p>\n<p><a href=\"https:\/\/antivirus.comodo.com\/download\/thank-you.php?prod=cloud-antivirus&#038;track=16678&#038;af=16678\" target=\"_blank\" rel=\"noopener\" onclick=\"ga('send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Download', eventLabel: 'Bottom FREE DOWNLOAD banner Product AV'});ga('nT.send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Download', eventLabel: 'Bottom FREE DOWNLOAD banner Product AV'});\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-8604\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2018\/04\/Comodo-Free-Antivirus.png\" alt=\"comodo antivirus\"\/><\/a><\/p>\n<p><a href=\"https:\/\/secure.nurd.com\/home\/purchase.php?pid=109&#038;af=16166\" target=\"_blank\" rel=\"noopener\" onclick=\"ga('send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Click', eventLabel: 'GET COMPLETE PROTECTION banner Product CIS Pro'});ga('nT.send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Click', eventLabel: 'GET COMPLETE PROTECTION banner Product CIS Pro'});\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-8604\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2020\/08\/complete-antivirus.png\" alt=\"comodo antivirus\" width=\"650\" height=\"83\" \/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ransomware is sort of trending in the world of malware and cyber crimes. There have been many ransomware attacks in the recent past and many leading organizations across the world have had to face issues following such attacks. The latest news to hit as regards ransomware is about security researchers being concerned over a new [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":1561,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[39,9,63],"class_list":["post-1549","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-computer-safety","tag-anti-malware","tag-antivirus","tag-free-antivirus"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches<\/title>\n<meta name=\"description\" content=\"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches\" \/>\n<meta property=\"og:description\" content=\"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system\" \/>\n<meta property=\"og:url\" content=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/\" \/>\n<meta property=\"og:site_name\" content=\"Comodo Antivirus Blogs | Anti-Virus Software Updates\" \/>\n<meta property=\"article:published_time\" content=\"2017-02-14T12:41:17+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-18T17:45:21+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png\" \/>\n\t<meta property=\"og:image:width\" content=\"200\" \/>\n\t<meta property=\"og:image:height\" content=\"151\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"seo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"seo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/\",\"name\":\"New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches\",\"isPartOf\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png\",\"datePublished\":\"2017-02-14T12:41:17+00:00\",\"dateModified\":\"2020-08-18T17:45:21+00:00\",\"author\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\"},\"description\":\"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system\",\"breadcrumb\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png\",\"contentUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png\",\"width\":200,\"height\":151,\"caption\":\"Antivirus\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/antivirus.comodo.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"The New VirLocker Ransomware Campaign That&#8217;s Giving Experts Headaches&#8230;\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/\",\"name\":\"Comodo Antivirus Blogs | Anti-Virus Software Updates\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\",\"name\":\"seo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"caption\":\"seo\"},\"url\":\"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches","description":"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/","og_locale":"en_US","og_type":"article","og_title":"New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches","og_description":"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system","og_url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/","og_site_name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","article_published_time":"2017-02-14T12:41:17+00:00","article_modified_time":"2020-08-18T17:45:21+00:00","og_image":[{"width":200,"height":151,"url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png","type":"image\/png"}],"author":"seo","twitter_card":"summary_large_image","twitter_misc":{"Written by":"seo","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/","url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/","name":"New VirLocker Ransomware Campaign that\u2019s Giving Experts Headaches","isPartOf":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage"},"image":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage"},"thumbnailUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png","datePublished":"2017-02-14T12:41:17+00:00","dateModified":"2020-08-18T17:45:21+00:00","author":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462"},"description":"A new malware VirLocker infects every single file, storage devices, external hard disks, USB sticks and even DVDs that are connected to the system","breadcrumb":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#primaryimage","url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png","contentUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/thumb_117065.png","width":200,"height":151,"caption":"Antivirus"},{"@type":"BreadcrumbList","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/virlocker-ransomware-campaign-thats-giving-experts-headaches\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/antivirus.comodo.com\/blog\/"},{"@type":"ListItem","position":2,"name":"The New VirLocker Ransomware Campaign That&#8217;s Giving Experts Headaches&#8230;"}]},{"@type":"WebSite","@id":"https:\/\/antivirus.comodo.com\/blog\/#website","url":"https:\/\/antivirus.comodo.com\/blog\/","name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462","name":"seo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","caption":"seo"},"url":"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/"}]}},"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1549","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/comments?post=1549"}],"version-history":[{"count":27,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1549\/revisions"}],"predecessor-version":[{"id":15023,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1549\/revisions\/15023"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media\/1561"}],"wp:attachment":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media?parent=1549"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/categories?post=1549"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/tags?post=1549"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}