Message Image

Skip main navigation (Press Enter).

Endpoint Protection

View Only

Back to discussions

Expand all | Collapse all

MISCHA RANSOMWARE

Jump to Best Answer

Migration UserMay 27, 2016 09:14 AM

Hi Team, One of our computer is infected with MISCHA RANSOMWARE! (Sophos alias). What is the Symantec ...

ℬrίαηMay 27, 2016 09:36 AM

It would fall under the Cryptolocker signature detection but each AV company uses a different naming ...

Mick2009May 27, 2016 10:02 AMBest Answer

Hi Jagada, Thanks for the post. Known samples are detected as Trojan.Cryptolocker.AP ( https://www.symantec.com/security_response/writeup.jsp?docid=2016-051613-5427-99 ...

Migration UserMay 27, 2016 10:31 AM

1. MISCHA RANSOMWARE

0 Recommend
Migration User
Posted May 27, 2016 09:14 AM

Reply Reply Privately
Hi Team,

One of our computer is infected with MISCHA RANSOMWARE! (Sophos alias). What is the Symantec alias for this threat.
2. RE: MISCHA RANSOMWARE

0 Recommend
ℬrίαη
Posted May 27, 2016 09:36 AM

Reply Reply Privately
It would fall under the Cryptolocker signature detection but each AV company uses a different naming convention.

Best bet is to submit to symantec

https://www.symantec.com/security_response/submitsamples.jsp

Submit to virustotal as well

https://www.virustotal.com/
3. RE: MISCHA RANSOMWARE
Best Answer

0 Recommend
Mick2009
Posted May 27, 2016 10:02 AM

Reply Reply Privately
Hi Jagada,

Thanks for the post. Known samples are detected as Trojan.Cryptolocker.AP (https://www.symantec.com/security_response/writeup.jsp?docid=2016-051613-5427-99)

This article may be of interest:

Ransomware protection and removal with Symantec Endpoint Protection
http://www.symantec.com/docs/HOWTO124710

Please do mark this thread solved if you have received your answer!

With thanks and best regards,

Mick
4. RE: MISCHA RANSOMWARE

0 Recommend
Migration User
Posted May 27, 2016 10:31 AM

Reply Reply Privately
Thanks Mick

Copyright 2019. All rights reserved.

Powered by Higher Logic