Comprehensive data protection for all workloads
Post Reply
Posts: 15
Liked: 1 time
Joined: Dec 04, 2014 4:59 pm
Full Name: Albert Gostick

Ransomware payload delay x months?

Post by AlbieNorth »

Hi all,

Some discussion here regarding how long ransomware has been known to sit idle (in some variants) before launching its payload action. I have seen 2 months and sometimes 3 months on forums. Has anyone seen anything much longer?


Dima P.
Product Manager
Posts: 11789
Liked: 1040 times
Joined: Feb 04, 2013 2:07 pm
Full Name: Dmitry Popov
Location: Prague

Re: Ransomware payload delay x months?

Post by Dima P. »

Hello Albert.

AV signatures may recognize ransomware after some point it time (signatures are constantly updated but with a small delay), if ransomware sits too long - there is a change AV database gets it's signature and it's going to be recognized as threat. That's in theory and I'd say never underestimate ransomware.

SVP, Product Management
Posts: 26728
Liked: 4281 times
Joined: Jan 01, 2006 1:01 am
Location: Baar, Switzerland

Re: Ransomware payload delay x months?

Post by Gostev »

Ditto. It does not have a luxury to wait for too long.

Post Reply

Who is online

Users browsing this forum: Bing [Bot], Google [Bot] and 38 guests