WORM_RANSOM.FD
WORM_RANSOM.FD is typically downloaded from specific remote web pages by other malware, or it may be downloaded by an inexperienced user when visiting an untrusted domain. Once installed onto a computer, WORM_RANSOM.FD may modify the registry entries and system operating files in order to begin running as soon as Windows starts up. The main purpose of WORM_RANSOM.FD is to send out an email to every email address discovered on the infected machine, with itself as an attachment. The email reads as follows:
"SUBJECT:
You are a very lucky man, read this mail!
BODY:
Hi, you won a big amount of money!!! If you want to know more look at the attachment!
ATTACHMENT:
BigCashForYou.exe"
This is how WORM_RANSOM.FD spreads from system to system. Opening this email or its attachment could lead to a computer becoming infected.
File System Details
# | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
---|---|---|
1. | BigCashForYou.exe | |
2. | %System%\\recovery.exe | |
3. | %System%\\kkk.exe |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.