BREAKING NEWS: Windows Defender Advanced Threat Protection (Windows Defender ATP) to include AI-driven automated investigation and remediation capabilities later this year.Learn more
Alert level: Severe Detected with Windows Defender Antivirus
Also detected as: Gen:Variant.Graftor.Elzob.644 (BitDefender) Mal/Banc-B (Sophos) TR/Spy.Gen2 (Avira)
Windows Defender Antivirus detects and removes this threat.
Win32/Reveton is a family of ransomware that targets users from certain countries. It locks your PC and displays a localized webpage that covers your desktop and demands the payment of a fine for the supposed possession of illicit material.
PWS:Win32/Reveton.B extends the Reveton family’s functionality by stealing sensitive information and sending it to a remote attacker. It targets passwords for a number of file downloaders, remote control applications, FTP, poker, chat and e-mail clients. It can also steal passwords stored by browsers and in protected storage. It is used by Ransom:Win32/Reveton.
Our ransomware FAQ page has more information on this type of threat.
Read our latest comprehensive ransomware report: