VisCom

Member
  • Content Count

    2
  • Joined

  • Last visited

Community Reputation

0 Neutral

About VisCom

  • Rank
    New Member
  1. I have done this already thank you, this I why we believe it to be GlobeImposter 2.0.
  2. Our server has been infected from a workstation on the network that has now been isolated, it started last night around 23.30 GMT. The file bad_b.exe looks like the source, judging by the ransom note it appears to be based on the GlobeImposter 2.0 encryption but has created the file extension .forcrypt. Can anyone help at all?