A new strain of ransomware called Defray has recently appeared. Defray is targeting specific verticals such as healthcare, education, manufacturing, and technology.

Defray is being spread with phishing emails including a document that contains the ransomware with a payment demand of $5,000.

According to Proofpoint, Defray relies on social engineering by custom-crafting emails to appeal to the recipient. In various instances, the attachments use specific logos depending on which vertical they are targeting to appear legitimate.

In addition to the ransom demand, the hackers suggest it is possible to negotiate a smaller ransom demand, and tout the strength of the ransomware to dissuade victims from attempting decryption.