Threat Landscape Dashboard

Assessing today's threats and the relationships between them

LockerGoga - Ransomware

The ransomware, also known as Worker32, uses both AES and RSA encryption and appends ".locked" to infected files. The ransom note dropped by the malware reports to decrypt 2-3 random files for free and requires the victim to contact the threat actor by email. The note goes on to say the price to decrypt all encrypted files is determined by how fast the victim contacts the ransomware author.
Name Modified Date Sources
LockerGoga - Ransomware 2019-03-20