The LV ransomware, a strain that cropped up just this spring, turns out to be based on what is most likely pirated REvil ransomware code, researchers say. The code structure and functionality of the LV ransomware sample analyzed by CTU researchers are identical to REvil, they said. LV appears to replicate REvil s playbook in many ways, including posting the names of its victims on name and shame sites, according to the analysis. The group needed to provide a configuration replacement that has the same identical configuration as the REvil code, the researchers said.
Source: https://threatpost.com/revil-ransomware-code-rivals/167167/