I have come across some stories recently about vicious new malware that holds your data hostage until you pay up, does (or will) Avast cover these horrible pieces of malware?
Wow… seems a virtual hijack ;D
It was on Kaspersky’s website about a new 1024bit encryption that holds your files hostage, just wondering whether Avast covers this malware type
Which is it? Do you know the provider of this service?
what I meant was that whoever created this new malware made it so the malware locks your files up using 1024bit encryption which you must contact the creator of the malware and pay them before they unlock your files, nasty business
link to info on malware- http://www.viruslist.com/en/alerts?alertid=203996088
Very very dangerous and malicious malware!
Virus.Win32.Gpcode.ak 06.05.08 14:37 GMTStatus : moderate risk
Kaspersky Lab has detected a new version of the ‘malicious blackmailer’ Gpcode — Virus.Win32.Gpcode.ak.
The new Gpcode variant encrypts files with extensions DOC, TXT, PDF, XLS, JPG, PNG, CPP, H etc. on hard drives using an RSA algorithm with a 1024-bit key.
After encrypting files, the virus leaves a text file in the folder next to the encrypted files with following message:
Your files are encrypted with RSA-1024 algorithm.
To recovery your files you need to buy our decryptor.
To buy decrypting tool contact us at: ********@yahoo.comCurrently, we detect the new variant, but we are unable to crack the 1024-bit key. Our analysts are continuing to work on both the key and the virus to resolve this issue.
Kaspersky Lab recommends that all Internet users enable maximum protection from malicious code and network attacks on their computers and refrain from executing suspicious programs received from untrustworthy sources.
Detection of Virus.Win32.Gpcode.ak was added to Kaspersky Anti-Virus signature databases yesterday, on June 4th, at 15:39 GMT. Please make sure to update if you haven’t already.
Maybe someone from the virus analyst team could say something to us, poor avast users
So what say you Avast! detect or not? After reading The post on Kaspersky I sure hope so
I have just looked and kaspersky have now setup a forum dedicated in uniting Anti virus companies in the fight against this 1024bit nasty
source- http://forum.kaspersky.com/index.php?s=ab541c1357a1812b02a4a1a6b2313243&showforum=91
I’ve managed to get one sample of this crap and submitted it to ALWIL as soon as i could. Hope it’ll help, though i think they already have it and they’re just creating good detection for it.
send it also to ThreatFire as they posted some very nice RE analyses of malware pieces …
You can also try Sunbelt, PrevX they posting from time to time some RE of malware too
It would be nice if we received some sort of answer from Alwil as to avast!'s ability in protecting
us from this malware.
We’re becoming impatient when the issue is to get an official answer from Alwil…
Guys I am also waiting for an answer however simple it maybe, but please lets not get too impatient as the team are probably just busy at the moment, does anyone know when the team are normally on the forums or how we can raise this topic to their attention
I shall ask the same question in a new topic with the title Gpcode. Thats the virus name and maybe we get a quicker answer.
I shall ask the same question in a new topic with the title Gpcode. Thats the virus name and maybe we get a quicker answer.
New topic will now give Alwil the opportunity to answer and not all of us who have responded in this thread would know about it.
I am still waiting for a reply from Alwil. It isn’t such a hard question to answer. :o