Globe2 Ransomware | Tech Support Scammer's Dream | Summary and Q&A

16.4K views
November 8, 2016
by
The PC Security Channel
YouTube video player
Globe2 Ransomware | Tech Support Scammer's Dream

TL;DR

A new variant of Globe ransomware has been discovered, which uses the Blowfish algorithm and has unique features like a debug mode and scanning for virtual machines.

Install to Summarize YouTube Videos and Get Transcripts

Questions & Answers

Q: What algorithm is the new variant of Globe ransomware based on?

The new variant of Globe ransomware is based on the Blowfish algorithm.

Q: Why is the inclusion of a debug mode in ransomware unusual?

The inclusion of a debug mode in ransomware is unusual because it reveals the attacker's presence and goes against their goal of hiding their footprint.

Q: What action does the ransomware take if it detects a virtual machine?

If the ransomware detects a virtual machine, it will terminate itself.

Q: What are some of the behaviors exhibited by this new variant of Globe ransomware?

The new variant of Globe ransomware deletes Shadow volume copies, disables Windows startup repair, changes the wallpaper, and uses an HTML application for the ransom note instead of a traditional notepad.

Summary & Key Takeaways

  • A new variant of Globe ransomware has been identified, based on the Blowfish algorithm.

  • This variant includes a debug mode, which is unusual for ransomware as it gives away the attacker's presence.

  • It also scans for virtual machine applications and terminates itself if a virtual machine is detected.

Share This Summary 📚

Summarize YouTube Videos and Get Video Transcripts with 1-Click

Download browser extensions on:

Explore More Summaries from The PC Security Channel 📚

Summarize YouTube Videos and Get Video Transcripts with 1-Click

Download browser extensions on: