Warning message... Link to action
Office 365 client apps now integrate with AMSI, enabling security solutions to scan macros at runtime. Learn how this integration exposes malicious intent
Aliases: CXmal/RnsmLnk-A (Sophos) Trojan.LNK.Reveton (Ikarus)
Windows Defender Antivirus detects and removes this threat.
The threat is a detection for shortcut files (LNK) created by variants of the Ransom:Win32/Reveton family of ransomware, which lock your computer and demand you pay a fine.
It's likely your PC has also been infected with other malware from the Ransom:Win32/Reveton family.
Our ransomware FAQ page has more information on this type of threat.
The trend towards increasingly sophisticated malware behavior, highlighted by the use of exploits and other attack vectors, makes older platforms so much more susceptible to ransomware attacks. From June to November 2017, Windows 7 devices were 3.4 times more likely to encounter ransomware compared to Windows 10 devices.