Horror fans know the consequences of an encounter with the evil doll Annabelle – users should similarly beware of the same-named ransomware, which possesses a bag of evil tricks to wreak havoc on an infected computer. Discovered by security researcher Bart, Annabelle Ransomware includes everything but the kitchen sink when it comes to screwing up a computer. This includes terminating numerous security programs, disabling Windows Defender, turning off the firewall, encrypting your files, trying to spread through USB drives, making it so you can't run a variety of programs, and then to sweeten the pot, it overwrites the master boot record of the infected computer with a silly boot loader. Thankfully, MalwareHunterTeam was able to extract the source code from the obfuscated executable so that we can get a better glimpse as to what this program is doing. When first run, Annabelle will configure itself to start automatically when you login to Windows terminating a variety...
Student Chapter of CSI, Lakshmangarh