Ransomware
L00KUPRU Ransomware Demands $1500 in Bitcoin
Our team discovered L00KUPRU, a ransomware variant associated with the Xorist family. This ransomware encrypts files, displays a pop-up window, and generates a ransom note named "HOW TO DECRYPT FILES.txt".... Read more
DysentryClub Ransomware Uses Morbid Wallpaper Image
Upon examining new malicious file samples, we discovered that DysentryClub is a malware that operates as ransomware. This malware encrypts files, appending the ".XXX555" extension to their filenames, and alters the... Read more
Kaaa Ransomware Locks Victim Systems
After analyzing malware samples, we found that Kaaa is part of the Djvu ransomware family. Kaaa encrypts files and modifies their filenames by adding the ".kaaa" extension. For instance, it changes "1.jpg" to... Read more
Uazq Ransomware is a New Djvu Family Member
After examining new malware samples, we found that Uazq is a ransomware associated with the Djvu family. Uazq operates by encrypting data and adjusting file names by adding the ".uazq" extension. To illustrate, it... Read more
HUNTER Ransomware Encrypts System Contents
During our examination of malware samples, we discovered HUNTER, a variant of ransomware belonging to the Phobos family. This malware encrypts files, modifies their filenames, and presents two ransom notes labeled... Read more
Napoli Ransomware Holds Files Hostage
Our analysts came across the Napoli malware during the examination of new file submissions. This malicious software is derived from the Chaos ransomware. During our testing, Napoli ransomware encrypted files and added... Read more
Crocodile Smile Ransomware Will Host Your Data Hostage
During an investigation into new file samples, our researchers uncovered the Crocodile Smile ransomware. This malicious software functions by encrypting data and then demanding payment in exchange for decryption. Upon... Read more
777 Ransomware Encrypts Victims' Data
While examining new file samples, our team came across a ransomware dubbed 777, which is affiliated with the GlobeImposter ransomware family. Upon execution, the malware proceeded to encrypt files and appended a... Read more
Farao Ransomware Contains Ransom Note in Portuguese
During our examination of new ransomware samples, our research team came across the Farao ransomware, which appears to be derived from the Chaos ransomware. This malicious software encrypts files and then demands... Read more
SchrodingerCat Ransomware Demands BTC Ransom
During a routine inspection of new files, our research team stumbled upon the SchrodingerCat ransomware, a variant of the GlobeImposter ransomware family. SchrodingerCat encrypts data and demands payment for... Read more
Dzen Ransomware is Based on Phobos Code
Dzen, a type of ransomware associated with the Phobos family, was identified during our analysis of new malware samples. This variant encrypts files and alters their filenames, while also delivering two ransom notes... Read more
SatanCD Ransomware Will Encrypt Most Files
SatanCD, a variant of the Chaos ransomware, operates by encrypting files and demanding payment for decryption. When tested SatanCD on our system, it successfully encrypted files and modified their names by adding a... Read more
Pegasus Ransomware Encrypts Victim System Drives
Our team came across Pegasus, a ransomware program, while going over new file sample submissions. When we ran a sample of Pegasus on our test machine, it encrypted files and modified their names. The original... Read more
Rincrypt Ransomware Locks Most Files
Our team uncovered the Rincrypt ransomware during an analysis of new malicious file samples. Upon running a sample of Rincrypt on our test system, it proceeded to encrypt files and add a ".rincrypt" extension to their... Read more
Uajs Ransomware Locks Most File Types
After analyzing malware samples, we discovered that Uajs belongs to the Djvu ransomware group. Uajs functions by encrypting files and appending the ".uajs" extension to their filenames. For example, it changes "1.jpg"... Read more
REDCryptoApp Ransomware Locks Files
REDCryptoApp is a malicious software designed to encrypt data and demand payment for its decryption, categorizing it as ransomware. When we ran a sample of this malware on our test system, it successfully encrypted... Read more
ELITTE87 Ransomware Encrypts Infected Drives
During our examination of new malware samples, we uncovered ELITTE87, a variant of ransomware associated with the Phobos family. ELITTE87 encrypts files, alters filenames, and presents two ransom notes: a pop-up... Read more
cursoDFIR Ransomware Contains Ransom Note in Portuguese
While examining new malware samples, we came across cursoDFIR, a type of ransomware designed to encrypt files. Moreover, cursoDFIR adds its extension (".cursoDFIR") to filenames, alters the desktop background, and... Read more
