AstraLocker Ransomware Shutdown,  Developer Switches To Cryptojacking

Share post:

AstraLocker operator has announced plans to shut down the ransomware operation. The ransomware developer has also submitted a ZIP archive with AstraLocker decryptors to the VirusTotal malware analysis platform.

“It was fun, and fun things always end sometime. I’m closing the operation, decryptors are in zip files, clean. I will come back. I’m done with ransomware for now. I’m going in cryptojacking lol,” AstraLocker’s developer said.

Cryptojacking is also known as malicious cryptomining. In this attack, cyber criminals hack both business and personal computers, laptops and mobile devices to install software that harnesses the power and resources of the computer to mine for cryptocurrencies or steal crypto wallets owned by unsuspecting victims.

While the developer did not reveal the reason for the shutdown, experts believe it is likely to be due to the sudden publicity from recent reports that would land operators behind bars.

To carry out a ransomware attack, AstraLocker’s operator directly deploy the payloads from email attachments using malicious Microsoft Word documents. Before encrypting files, the ransomware will check if it is running in a virtual machine, kill processes and stop backup and AV services, which would hinder the encryption process.

The sources for this piece include an article in BleepingComputer.

SUBSCRIBE NOW

Related articles

North Korean Job Scam Targeting IT Job Seekers

North Korea’s Lazarus advanced persistent threat (APT) group has launched a sophisticated campaign, “Operation 99,” targeting freelance software...

Hackers Exploit FastHTTP in High-Speed Microsoft 365 Attacks

Threat actors are employing the FastHTTP Go library to launch high-speed brute-force password attacks on Microsoft 365 accounts...

YouTubers Targeted As Cyberattackers Hide Infostealers in YouTube Comments, Google Search Results

Attackers have found a new way to infect people seeking pirated or cracked software: planting malicious download links...

New macOS Malware Exploits Apple’s Security Features to Stay Hidden and Steal User Data

A newly discovered variant of the Banshee macOS Stealer malware is putting 100 million Apple users at risk...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways