These messages, instead of coming from Microsoft, are coming from Thailand. This ransomware will download and lock all files on the computer, then will demand a payment to regain access to files.
One way to avoid downloading any potentially malicious files is to check the email’s legitimacy. Reports have indicated the infect email included spelling errors and non-English characters. If anything about the download email looks out-of-the-ordinary, don’t move forward with the download.
To ensure no information or files are lost in a takeover, it’s encouraged to regularly back up your device. This way, if your computer is infected, you can wipe the machine and reinstall a backup. Without a backup, recovery can be tedious and expensive.
These findings encourage users to be attentive when downloading any files from emails, even if they’re marked as Microsoft.