Meet Vertek
- Company Overview
  A legacy of superior customer service and entrepreneurial zeal.
  
  Our Approach
  Innovation and robust processes that accelerate value for customers.
  
  Job Openings
  Join our team of passionate experts, innovators, and caring professionals.
Services
- Telecom Operations
  Transforming operations through innovative services.
  
  Managed Cybersecurity
  Superior managed security services delivered with a human touch.
  
  Consulting
  Custom consulting services to drive business outcomes.
  
  Migration
  Comprehensive services that drive revenue and customer experience.
  
  Operations as a Service
  End-to-end solutions that scale operations and reduce time-to-market.
  
  Carrier Services
  Augment existing operations and accelerate speed-to-market.
  
  USM Anywhere™ Audit
  Discover the gaps and opportunities that exist within your AlienVault® instance.
  
  Managed AlienVault Services
  Unlock the full power of AlienVault USM with proactive and advanced security engineering.
  
  Managed Detection and Response
  Superior enterprise-wide threat detection, alerting, and response services.
  
  Managed Threat Intelligence
  Enhance your security program and posture with advanced analytics and intelligence services.
  
  Cyber Partners
  Capitalize on market opportunities with our flexible partner program options.
Cyber Partners
- The Managed Cybersecurity Opportunity
  Partner with us to address the managed cybersecurity needs of your customers.
  
  Partnership Options
  Our flexible programs enable you to build a cybersecurity business at your pace, on your terms.
  
  Deal Registration
  Register a new Managed Cybersecurity opportunity.
  
  Resources
  Videos, research, blogs, and more on cybersecurity threats, trends, and best practices.
  
  Cybersecurity Webinars
  Webinars and panels that deliver insights from CISOs, CIOs, and cybersecurity leaders.
Contact

Locky Now Pushing .Lukitus Variant – IoCs and OTX

Locky Now Pushing .Lukitus Variant - IoCs and OTX

by Vertek Labs

August 16, 2017

in Threats and IoCs

No Comments

2549

Locky is being distributed at mass scale via phishing and spam email attacks by two major botnets; Necurs and BlankSlate. Both are pushing Locky with the two new known variants; Diablo6 and Lukitus. When infected with the ransomware, systems file will be encrypted with extension .diablo6 or .lukitus,respectively.

OTX updated: https://otx.alienvault.com/pulse/598b06a8104ee74f496a4691/

Example of .lukitus variant being distributed by Necurs botnet:

Example of lukitus variant being distributed by blankslate botnet. It is referred to as blankslate because the email has no subject or message body and it is usually a zipped attachment. In the example below it was actually double zipped.

.lukitus IoCs Locky OTX Ransomware Threats

Recommended Posts

Ransomware Attack Against MGM

September 28, 2023

The Importance of Managed Detection and Response for Small and Medium-Sized Businesses: A Financial and Security Analysis

September 25, 2023

ProxyNotShell: Zero-Day Vulnerabilities in Microsoft Exchange Server

September 30, 2022