"We saw the first version of WanaCrypt0r in February and now the ransomware is available in 28 different languages, from languages like Bulgarian to Vietnamese," Avast Software threat intelligence analyst Jakub Kroustek said.
"The ransomware changes the affected file extension names to ".WNCRY", so an infected file will look something like: original_name_of_file.jpg.WNCRY, for example. The encrypted files are also marked by the "WANACRY!" string at the beginning of the file."
According to Kroustek, the ransomware drops the following ransom notes in a text file and after demanding the bitcoin ransom, the victim's wallpaper is changed.
"This attack once again proves that ransomware is a powerful weapon that can be used against consumers and businesses alike," Kroustek said.
"Ransomware becomes particularly nasty when it infects institutions like hospitals, where it can put people's lives in danger."
Sign up for CIO Asia eNewsletters.