
KoRyA Ransomware
KoRyA is the name of ransomware belonging to the Xorist family. Our malware researchers discovered KoRyA while examining samples submitted to VirusTotal. We learned that KoRyA encrypts data, appends the ".KoRyA" extension to filenames, changes the desktop wallpaper, creates the "HOW TO DECRYPT FIL