According to PCrisk, Rook is ransomware (an updated variant of Babuk) that prevents victims from accessing/opening files by encrypting them. It also modifies filenames and creates a text file/ransom note (HowToRestoreYourFiles.txt). Rook renames files by appending the .Rook extension. For example, it renames 1.jpg to 1.jpg.Rook, 2.jpg to 2.jpg.Rook.
Activity over time
Worldmap
9 Victims
Abdi ibrahim
Discovery Date: 2022-01-08 10:19
Evalueserve
Discovery Date: 2021-12-28 02:35
DENSO
Discovery Date: 2021-12-28 02:35
Data breach summary
Discovery Date: 2021-12-26 13:22
Rossell Techsys(Data will be given tomorrow)
Discovery Date: 2021-12-18 16:06
KMG Prestige, Inc. (Data will be given tomorrow)
Discovery Date: 2021-12-18 16:06
Rosendahl Design Group
Discovery Date: 2021-12-14 14:56
Rossell Techsys
Discovery Date: 2021-12-14 13:18
KMG Prestige, Inc.
Discovery Date: 2021-12-07 07:01
