Posts tagged ZCryptor

ZCryptor targets Windows OS and exhibits worm-like behavior. Initial attack vectors include spam email campaigns, macro malware, and fake Adobe Flash installers but, once a targeted system is infected, ZCryptor drops an autorun.inf file onto network drives and removable storage media. It maintains persistence by placing a zycrypt.lnk file in the start-up folder.

Read More