Ransomware Does MWB Pickup the .acute Ransomware?

mrlizard

New Member
Jul 1, 2019
2
Hello,

We have a client who just got hit with some ransomware and we went through and scanned all the computers and servers for an infection but found none. Is this particular variant to new to be detected as of yet?
 

Dave Russo

Level 15
Verified
May 26, 2014
749
Hello,

We have a client who just got hit with some ransomware and we went through and scanned all the computers and servers for an infection but found none. Is this particular variant to new to be detected as of yet?
Can you post the ransom screen? Was there no backup? Are the files encrypted? Task master should show something running
 
  • Like
Reactions: harlan4096

Jack

Administrator
Verified
Staff member
Jan 24, 2011
9,333
Hey @mrlizard
Yes, this "acute" version is a new variant of the Phobos ransomware. Malwarebytes should be able to detect and remove the malicious files, however, I would recommend that you also scan your computer with Emsisoft Emergency Kit and HitmanPro just to be on the safe side.

1.jpg


If you need any help with the removal, you can start a thread in the Malware Removal Assistance For Windows forum.

The main issue with ransomware is not the removal, it's the file recovery process. Without a backup, there is no way you can recover the files without paying the ransomware.
 

mrlizard

New Member
Jul 1, 2019
2
Actually we found it, seems it was on the very last machine and found at the very end of the scan lol. Yes we have backups. This particular client is rather hard headed and won't listen to us when we tell them to close RDP and use a VPN, as a result they have been slammed 4 times by ransomware in the last few years. We have recovered them each time it has happened, but it grows tiresome going through this ritual. Thanks for the replies
 
Top