802-878-8822

Meet Vertek
- Company Overview
  A legacy of superior customer service and entrepreneurial zeal.
  
  Our Approach
  Innovation and robust processes that accelerate value for customers.
  
  Job Openings
  Join our team of passionate experts, innovators, and caring professionals.
Services
- Telecom Operations
  Transforming operations through innovative services.
  
  Managed Cybersecurity
  Superior managed security services delivered with a human touch.
  
  Custom Software Development
  Agile-based custom software development that delivers value.
  
  Consulting
  Custom consulting services to drive business outcomes.
  
  SD-WAN
  SD-WAN services that fuel customer success.
  
  Migration
  Comprehensive services that drive revenue and customer experience.
  
  Operations as a Service
  End-to-end solutions that scale operations and reduce time-to-market.
  
  Carrier Services
  Augment existing operations and accelerate speed-to-market.
  
  Managed AlienVault Services
  Unlock the full power of AlienVault USM with proactive and advanced security engineering.
  
  Managed SIEM Services
  Reduce costs, enhance security capabilities and improve return on SIEM investments.
  
  Managed SOC Services
  Enhance your cybersecurity monitoring, detection, and response capabilities.
  
  Cyber Partners
  Capitalize on market opportunities with our flexible partner program options.
  
  Enterprise App Development
  Scalable and secure, high quality web application development.
  
  Mobile App Development
  Fast, responsive native and cross-platform mobile apps.
  
  API Design & Development
  Enable integrations and accelerate workflows with custom APIs.
  
  System Integration
  Connect internal systems to increase automation and efficiency.
  
  Business Intel & Analytics
  ETL toolsets and platform experts for actionable intelligence.
Cyber Partners
- The Managed Cybersecurity Opportunity
  Partner with us to address the managed cybersecurity needs of your customers.
  
  Partnership Options
  Our flexible programs enable you to build a cybersecurity business at your pace, on your terms.
  
  Deal Registration
  Register a new Managed Cybersecurity opportunity.
  
  Resources
  Videos, research, blogs, and more on cybersecurity threats, trends, and best practices.
  
  Cybersecurity Webinars
  Webinars and panels that deliver insights from CISOs, CIOs, and cybersecurity leaders.
Contact

Locky Now Pushing .Lukitus Variant – IoCs and OTX

Locky Now Pushing .Lukitus Variant - IoCs and OTX

by Vertek Labs

August 16, 2017

in Threats and IoCs

No Comments

1858

Locky is being distributed at mass scale via phishing and spam email attacks by two major botnets; Necurs and BlankSlate. Both are pushing Locky with the two new known variants; Diablo6 and Lukitus. When infected with the ransomware, systems file will be encrypted with extension .diablo6 or .lukitus,respectively.

OTX updated: https://otx.alienvault.com/pulse/598b06a8104ee74f496a4691/

Example of .lukitus variant being distributed by Necurs botnet:

Example of lukitus variant being distributed by blankslate botnet. It is referred to as blankslate because the email has no subject or message body and it is usually a zipped attachment. In the example below it was actually double zipped.

.lukitus IoCs Locky OTX Ransomware Threats

Recommended Posts

HAFNIUM: Exchange Zero Days Actively Exploited by APT Group

HAFNIUM: Exchange Zero Days Actively Exploited by APT Group

March 3, 2021

MSSP Tips & Tricks: Security Operations Management Metrics and Analytics Considerations

February 16, 2021

MSSP Tips & Tricks: Creating an OTX account

February 16, 2021