The Sodin virus was created to gain elevated privileges by using certain Windows vulnerability.
Then, it can do many things in your system with full user rights.
Click here if you would like to know some ransomware prevention tips.
Besides, there are also victims from Europe, North America and Latin America.
The following content will show you how to get them back from devices in different situations.
Sodin can hardly be detected, why?
That is because it exploits the architecture of the Central Processing Unit (CPU).
It can circumvent security solutions by making use of the legitimate processor functions.
Meanwhile, the data will also be encrypted.
We will call it the public skeleton key.
The encryption result is stored in the registry under the name 0_key.
according to Orkhan Mamedov, Artur Pakulov, and Fedor Sinitsyn from Kaspersky Lab
