"DJVU Ransomware's Latest Variant 'Xaro' Disguised as Cracked Software"
The latest variant of DJVU ransomware, codenamed Xaro, is distributed in the form of cracked software. The DJVU variant appends the .xaro extension to affected files and demands a ransom for a decryptor. It has been observed infecting systems along with other commodity loaders and infostealers. DJVU, which is a variant of the STOP ransomware, typically masquerades as legitimate services or applications. It is also delivered as a SmokeLoader payload. This article continues to discuss the new variant of the DJVU ransomware.
THN reports "DJVU Ransomware's Latest Variant 'Xaro' Disguised as Cracked Software"
Submitted by grigby1
Submitted by Gregory Rigby
on