Popup - Last Legends - Main Page (last-of-legends.xyz)
Registered via NameCheap on October 9, 2021 - Whois last-of-legends.xyz
|
VirusTotal - VirusTotal - File - de6afa5e0eaf376ef1eeea49f554963018ec44e734ee9abf78b4c7fb34407a09
Program contains the Trojan-PSW:Win32.Disco.geu, ransomware, which performs the following modifications:
- Attempts to connect to a dead IP:Port (1 unique times);
- Starts servers listening on 127.0.0.1:0;
- Performs some HTTP requests;
- Ciphering the documents situated on the sufferer’s hard disk drive — so the target can no more utilize the data;
- Preventing normal access to the victim’s workstation. This is the typical behavior of a virus called locker. It blocks access to the computer until the victim pays the ransom.