Halloween-themed MICROP ransomware is a phishing email with a Google Drive link. The threat actor uses an infection link to download a downloaded RAR file and run the MIRCOP ransomware. The email address is then used to set up the payment required to gain access to the decrypting tool the threat actor claims will unlock the files and applications. The campaign is not particularly sophisticated, but the use of Google Drive allowed it to get past SEGs. A malicious file steals passwords from web browsers including Explorer, Google Chrome, Firefox and Opera.”]
Source: https://threatpost.com/ransomware-phishing-emails-segs/176470/