Android/Ransom.SLocker

ThreatDown is now the name of the Malwarebytes line of business products. References to Malwarebytes below reflect the amazing technology used to first identify the threat.

Short bio

Android/Ransom.SLocker is Malwarebytes’ detection name for a family of mobile ransomware.

Type of infection

Ransom.SLocker masquerades as various legitimate apps to fool users into accepting escalated rights. Users who accept the escalated rights will have their device forced to reboot. After reboot, users will have their device locked with overlaying screen with instructions to pay.

Protection

You can protect yourself by being cautious before giving superuser and/or device administrator rights to any app that asks for it.

Home remediation

Malwarebytes Anti-Malware Mobile can remove the ransomware, but only before escalated rights have been granted. Afterwards, it becomes a bit harder. For how to remove such infections, refer to blog post “Difficulty removing Koler Trojan or other ransomware on Android?”

Similiar detections

Ransom.Snatch Ransom.ELF.ESXi.Attacks Virlock.Ransom.FileInfector.DDS Ransom.VirLock Ransom.FileCryptor.MSIL.Generic Ransom.FileCryptor Ransom.Maui Sodinokibi.Ransom.Encrypt.DDS Ransom.AvosLocker Ransom.BlackByte View all Ransomware detections >

Products

Services

Features

Platforms

Why ThreatDown

Detection Details

Android/Ransom.SLocker

Short bio

Type of infection

Protection

Home remediation

Similiar detections

Products & Services

Partners

Resources

Managed Services Terms & Conditions

Support

Get in Touch