The following screen is showed to the victim, suggesting that the victim has stolen 48.48BTC from a hacktivist group.
It appears this malware is dropped by a malicious spam message talking about Thai customs imports. It should also be noted that the malware appears to have code to steal credentials from popular browsers, Filezilla, and Skype. More details are available on TrendMicro's blog post: https://ssl-proxy.herokuapp.com/746228f9bc8d0b19eb08022b41ce460c73281bda/687474703a2f2f626c6f672e7472656e646d6963726f2e636f6d2f7472656e646c6162732d73656375726974792d696e74656c6c6967656e63652f66696c65732f323031362f30362f6d6972636f702d6e6f74652e6a7067/
I have released a decrypter for this ransomware, available here : http://www.bleepingcomputer.com/download/microcop-decryptor/
Edited by Grinler, 28 July 2016 - 08:41 AM.