SYMBOLCOMMON_NAMEaka. SYNONYMS
win.povlsomware (Back to overview)

Povlsomware


According to Trend Micro, Povlsomware (Ransom.MSIL.POVLSOM.THBAOBA) is a proof-of-concept (POC) ransomware first released in November 2020 which, according to their Github page, is used to “securely” test the ransomware protection capabilities of security vendor products.

References
2021-10-30YouTube ( DuMp-GuY TrIcKsTeR)Jiří Vinopal
@online{vinopal:20211030:reversing:ce96b92, author = {Jiří Vinopal}, title = {{Reversing CryptoCrazy Ransomware - PoC Decryptor and some Tricks}}, date = {2021-10-30}, organization = {YouTube ( DuMp-GuY TrIcKsTeR)}, url = {https://youtu.be/oYLs6wuoOfg}, language = {English}, urldate = {2021-11-26} } Reversing CryptoCrazy Ransomware - PoC Decryptor and some Tricks
Povlsomware
2021-03-01Trend MicroDon Ovid Ladores
@online{ladores:20210301:povlsomware:d683693, author = {Don Ovid Ladores}, title = {{Povlsomware Ransomware Features Cobalt Strike Compatibility}}, date = {2021-03-01}, organization = {Trend Micro}, url = {https://www.trendmicro.com/en_us/research/21/c/povlsomware-ransomware-features-cobalt-strike-compatibility.html}, language = {English}, urldate = {2021-04-06} } Povlsomware Ransomware Features Cobalt Strike Compatibility
Povlsomware

There is no Yara-Signature yet.