Ref case: SHA1: d752629e7fed54d4ccc7163e8f6bbb4efe2a558c
Would be most appreciative if you could help me identify this ransomware. It has infected both my mother's and my father's computers. I am only able to provide a screen shot of the ransomware message, which I uploaded to the ID Ransomware tool. Unable to figure out how to attach the screen shot to this post, however.
It is a white text, blue background message, with two additional warning popups from a "Microsoft Support Desk" that provides a toll free number to call. It does not ask for money in the message, but my father (unfortunately) did call the number, at which point they asked him for a lot of information about his computer and network settings, and eventually were able to take control of his computer by doing a screen share, at which point my father says the cursor was moving around on the screen by itself and lots of windows were being opened and changes were being made. Then, the "help desk" people demanded money and threatened to report him to the authorities if he did not pay a fee for them to fix the problems, citing evidence of "illegal activities" they had located on his computer. My father is a 71 year old retiree with not so much as a parking ticket his entire life!
Thanks very much in advance for your help