Mailto - Ransomware

The ransomware, also known as Netwalker, targets enterprise networks and encrypts all Microsoft Windows systems found. The malware was detected in August 2019 with new variants discovered throughout the year including into 2020. The ransomware appends a random extension to infected files and uses Salsa20 encryption. The ransomware added a new defense evasion techinque known as reflective DLL loading to inject a DLL from memory.