- Jun 18, 2012
- 1,532
- 866
- 131
So, as many know, I work at a small independent computer place during the day. We had a customer from a local university come in today with a nice Dell Precision tower, something with 64GB of memory and an E5 Xeon, that had gotten hit with a crypto virus I've never seen before.
It got everything. I seriously think it encrypted everything but Windows itself and its programs. Files have been renamed to have "_yotabyte@protonmail.com.scarab" on the end of them.
Googling shows almost nothing about this; the most informative result was in Russian and thank goodness for translation. This thing seems to be a very new variant, as all my search results are a week old or less (and most of them are shady generic "how to remove X malware" stuff).
Has anyone been hit with, or even seen, this variant before? Kaspersky refers to it as Purga.de I believe.
It got everything. I seriously think it encrypted everything but Windows itself and its programs. Files have been renamed to have "_yotabyte@protonmail.com.scarab" on the end of them.
Googling shows almost nothing about this; the most informative result was in Russian and thank goodness for translation. This thing seems to be a very new variant, as all my search results are a week old or less (and most of them are shady generic "how to remove X malware" stuff).
Has anyone been hit with, or even seen, this variant before? Kaspersky refers to it as Purga.de I believe.
Facebook
Twitter