Ransomware
Lkhy Ransomware Will Encrypt Your Drives
After a thorough examination of new malware samples, we've identified Lkhy, a ransomware variant linked to the Djvu family. Lkhy encrypts files and alters their names by adding the ".lkhy" extension, for instance,... Read more
What is Ldhy Ransomware?
Ldhy ransomware is a member of the Djvu ransomware family. Like its counterparts, Ldhy encrypts files on the victim's system and adds a specific extension, ".ldhy", to their filenames. For example, a file named... Read more
MIRROR Ransomware Encrypts Files
We have identified MIRROR as a ransomware variant associated with the Dharma family. MIRROR is designed to encrypt files and alter their filenames, while also displaying two ransom notes in the form of a pop-up window... Read more
Ebaka Ransomware is Based On Phobos Code
During the examination of recent malware samples, our research team came across the Ebaka ransomware, which is a member of the Phobos ransomware family. Ebaka has been designed to encrypt files and demands payment in... Read more
Secles Ransomware Uses Lengthy Ransom Note
Secles, a form of malware designed to encrypt data, was identified by our research team during a routine examination of new file samples. Malicious programs that encrypt files and demand ransoms for decryption are... Read more
Xrp Ransomware Encrypts Victim Drives
While examining new malware samples, we encountered a ransomware variant known as Xrp, affiliated with the GlobeImposter family. Xrp's primary objective is to encrypt files, appending an email address and the ".xrp"... Read more
What is LAPSUS$ Ransomware?
LAPSUS$ Ransomware, also known as LAPSUS$ (ZZART3XX), is a malicious software designed to encrypt data on infected systems. It appends the ".EzByZZART3XX" extension to filenames, rendering them inaccessible to the... Read more
Why You Should Beware of Wing Ransomware
Wing Ransomware is malware known for encrypting files and demanding ransoms for their recovery. In this overview, we delve into the characteristics, functionalities, and potential risks associated with Wing... Read more
Dx31 Ransomware is a Phobos Variant
During our analysis of new malicious file samples, we identified Dx31 as ransomware belonging to the Phobos family. Upon activation, Dx31 encrypts data, changes filenames for all encrypted files, and presents two... Read more
SilentAnonymous Ransomware Demands $1500
Our team identified the SilentAnonymous ransomware during an examination of new file submissions. This malicious software is specifically designed to encrypt data and demand payment in exchange for providing... Read more
NOOSE Ransomware Named After Videogame Entity
NOOSE, a type of ransomware associated with the Chaos family, operates by infecting computers and encrypting files. The ransomware is named after the fictional law enforcement agency in the video game series Grant... Read more
ZeroGuard Ransomware Locks Victim Systems
ZeroGuard is a type of ransomware, characterized by its malicious nature. This malware is specifically designed to encrypt files and then demand payment for their decryption. In our testing, when we executed a sample... Read more
What is JerryRansom Ransomware?
JerryRansom ransomware, derived from the Chaos ransomware, poses a significant threat to computer systems. This malicious software encrypts files, alters desktop settings, and demands ransom from victims for file... Read more
KVIP Ransomware is a Djvu Clone
KVIP ransomware is a new variant of the well-known STOP/DJVU ransomware family. It employs strong encryption algorithms to lock files and adds the .KVIP extension to the names of encrypted files. Once a system is... Read more
Slime Ransomware Demands Payment In TNG
While examining new malicious files, our researchers came across the Slime ransomware. This malware is derived from Chaos and is crafted to encrypt files, demanding ransom payments for their decryption. On our test... Read more
Cdxx Ransomware is Based on Djvu
While going over malware samples, we discovered that Cdxx is a member of the Djvu ransomware family with its primary goal being data encryption. It follows a pattern of appending the ".cdxx" extension to filenames... Read more
Cdcc Ransomware Will Hold Your Data Hostage
After a recent analysis of malicious file samples, we discovered the Cdcc ransomware that is linked to the Djvu ransomware family. Its primary objective is to encrypt data, appending the ".cdcc" extension to filenames... Read more
Lockxx Ransomware Comes With Chinese Ransom Note
During our analysis of the malicious software, we observed that Lockxx functions as ransomware: it encrypts files, adds the extension ".lockxx" to file names, and presents a ransom note ("lockxx.recovery_data.hta").... Read more
