Results for dga

Threat Research

A Closer Look at Locky Ransomware

A new ransomware named “Locky” is currently circulating in the wild and making the headlines. There are some good reports regarding Locky ransomware already available over the Internet. This blog intends to focus on some technical areas that (we believe) have not been covered yet, namely, its domain generation algorithm, command and control communication, and file encryption. For reference, the following is a screenshot of Locky’s Decrypter page (cropped to save space): Based on Harry71’s Onion Spider, the Locky...