802-878-8822

Meet Vertek
- Company Overview
  A legacy of superior customer service and entrepreneurial zeal.
  
  Our Approach
  Innovation and robust processes that accelerate value for customers.
  
  Job Openings
  Join our team of passionate experts, innovators, and caring professionals.
Services
- Telecom Operations
  Transforming operations through innovative services.
  
  Managed Cybersecurity
  Superior managed security services delivered with a human touch.
  
  Custom Software Development
  Agile-based custom software development that delivers value.
  
  Consulting
  Custom consulting services to drive business outcomes.
  
  SD-WAN
  SD-WAN services that fuel customer success.
  
  Migration
  Comprehensive services that drive revenue and customer experience.
  
  Operations as a Service
  End-to-end solutions that scale operations and reduce time-to-market.
  
  Carrier Services
  Augment existing operations and accelerate speed-to-market.
  
  USM Anywhere™ Audit
  Discover the gaps and opportunities that exist within your AlienVault® instance.
  
  Managed AlienVault Services
  Unlock the full power of AlienVault USM with proactive and advanced security engineering.
  
  Managed Detection and Response
  Superior enterprise-wide threat detection, alerting, and response services.
  
  Managed Threat Intelligence
  Enhance your security program and posture with advanced analytics and intelligence services.
  
  Cyber Partners
  Capitalize on market opportunities with our flexible partner program options.
  
  Enterprise App Development
  Scalable and secure, high quality web application development.
  
  Mobile App Development
  Fast, responsive native and cross-platform mobile apps.
  
  API Design & Development
  Enable integrations and accelerate workflows with custom APIs.
  
  System Integration
  Connect internal systems to increase automation and efficiency.
  
  Business Intel & Analytics
  ETL toolsets and platform experts for actionable intelligence.
Cyber Partners
- The Managed Cybersecurity Opportunity
  Partner with us to address the managed cybersecurity needs of your customers.
  
  Partnership Options
  Our flexible programs enable you to build a cybersecurity business at your pace, on your terms.
  
  Deal Registration
  Register a new Managed Cybersecurity opportunity.
  
  Resources
  Videos, research, blogs, and more on cybersecurity threats, trends, and best practices.
  
  Cybersecurity Webinars
  Webinars and panels that deliver insights from CISOs, CIOs, and cybersecurity leaders.
Contact

Locky Now Pushing .Lukitus Variant – IoCs and OTX

Locky Now Pushing .Lukitus Variant - IoCs and OTX

by Vertek Labs

August 16, 2017

in Threats and IoCs

No Comments

2405

Locky is being distributed at mass scale via phishing and spam email attacks by two major botnets; Necurs and BlankSlate. Both are pushing Locky with the two new known variants; Diablo6 and Lukitus. When infected with the ransomware, systems file will be encrypted with extension .diablo6 or .lukitus,respectively.

OTX updated: https://otx.alienvault.com/pulse/598b06a8104ee74f496a4691/

Example of .lukitus variant being distributed by Necurs botnet:

Example of lukitus variant being distributed by blankslate botnet. It is referred to as blankslate because the email has no subject or message body and it is usually a zipped attachment. In the example below it was actually double zipped.

.lukitus IoCs Locky OTX Ransomware Threats

Recommended Posts

ProxyNotShell: Zero-Day Vulnerabilities in Microsoft Exchange Server

September 30, 2022

Follina: Microsoft Office Zero Day Vulnerability

Follina: Microsoft Office Zero Day Vulnerability

June 3, 2022

Log4Shell Vulnerability

Log4Shell Vulnerability

December 13, 2021