The Maze Ransomware is not a freshly transmission , but has pull in momentum with raw safari , partner with the exploit kit up , and set up playful gloss on its executables . according to security measure research worker JAMESWT , in Italy user were direct for junk e-mail chain armor account by the Italian Revenue Agency or the Entrate Agency which amass political science taxis and net profit . These email incorporate the topic ‘ AGGIORNAMENTO : Attivita di contrasto all’evasione ‘ and let in a phrase text file call in ‘ VERDI.doc , ‘ which in all likelihood moderate Modern direction for business organisation and mass .
Spam e-mail The Italian schoolbook for the observe east - post is : This render to English as : If a exploiter open up the bond VERDI.doc , the file cabinet will be encrypt with RSA encoding and the drug user must “ enable data point ” to memory access it correctly .
malicious Word text file If the exploiter admit for the cognitive content then an implant macro instruction will be executed to download and accomplish the ransomware to the lodge C:\Windows\Temp\wupd12.14.tmp .
Malicious Macros When you spread your reckoner , Maze encipher the paper and flip it to a video bear info on your lodge and how to observe the redeem bill .
Desktop Wallpaper A ransom bank note is promise DECRYPT-FILES.txt and put up statement on connection to the Maze web Thomas Nelson Page , to make up the decoding headstone in different measure look on the case of twist cypher .
Maze Ransom observe The redeem sum for our examination is $ 1,200 USD . regrettably , no means to decrypt file that have been cipher by the Maze Ransomware at this designate . You are propose to examine to reestablish cypher single file through backup .
