Looking today i see at least 3 new posts about Cryptolocker/wall. Well you can add my story to the list.
Yesterday at around 2pm our office was hit with Cryptowall, We had a user who was reporting programs attempting to install without her clicking on anything.
this is the install the user was getting, doing a search on the URL you get a couple different results
Scumware.org reportVirustotal.com reportandherdprotect.com report.
the "Player_Setup.exe was installed by the user, but i found a couple of different processes running, one of which being "ahofmoa.exe *32" which would replicate itself multiple times and demand over 90% of the cpu, and the main one was "aixxo.exe *32" (dont remember the exact name but it is a variation of aixo) Both of the description in msconfig was a "Trade Terminal". Trend Micro did not pick up either,...