The Ryuk ransomware has added two features to enhance its effectiveness. Ryuk uses the Wake-on-LAN (WoL) utility to reach snoozing systems that it otherwise would have no ability to encrypt. WoL is a networking standard that allows a computer to be turned on remotely, whether it s hibernating, sleeping or completely powered off. The second fresh Ryuk feature is the use of ARP ping scanning, which also expands Wizard Spider s ability to reach deeper into the corporate LAN of a compromised target.
Source: https://threatpost.com/wizard-spider-upgrades-ryuk-ransomware/149853/