Mallox Ransomware is Ramping up its Operation

Threat Advisories

Mallox Ransomware is Ramping up its Operation

Threat Level
Attack Report

For a detailed threat advisory, download the pdf file here

Summary

Mallox ransomware strains have been spotted in the wild, indicating that the ransomware is operational, propagating rapidly, and infecting entities. An unknown .NET-based loader distributes these Mallox ransomware samples. The loader then downloads and encrypts data on the victim’s device with Mallox ransomware from a remote source.