Home / malware Ransom:Win32/Teerac
First posted on 19 April 2019.
Source: MicrosoftAliases :
There are no other names known for Ransom:Win32/Teerac.
Explanation :
Installation
Ransom:Win32/Teerac can be downloaded by other malware, such as TrojanDownloader:O97M/Donoff. It can also arrive on your PC as a spam email attachment using a file name such as:
fatura.exe Parcel_Information.exe track_.exe
When run, it can inject itself to valid system processes and drop a copy of itself in %windir% orwith a random name. For example:
ovijhbij.exe %windir% yjyricb.exe
It can also install other files onto your PC that can be used by the malware as reference startup points. We have seen it use the following format: