Ransomware
MegaCortex
First seen: 2019-01 • Status: inactive
Currently Inactive
MegaCortex was deployed manually by hackers after they broke into networks. It demanded huge ransoms from big companies.
Overview
MegaCortex was linked to LockerGoga and Emotet. It used manual deployment after network compromise for higher payouts.
How It Spreads
- • Emotet infections
- • Manual deployment
What It Does
- • File encryption
- • Stops security services
- • High ransom demands
Is your business exposed?
Target Platforms
Windows
Detection Tips
- • Monitor for service termination
- • Watch for Emotet
MITRE ATT&CK Techniques
T1486, T1489
If You're Infected
- 1.
Decryptor available from Bitdefender
Related Malware
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required