Ransomware
Newlocker Ransomware Joins Family of MedusaLocker Clones
During our inspection of malware samples, we discovered Newlocker, a ransomware program that is part of the MedusaLocker family. The ransomware encrypts files and adds the ".newlocker" extension to their names. It... Read more
What is Akira Ransomware?
In recent years, ransomware attacks have become increasingly prevalent, and Akira Ransomware is one of the latest threats to emerge. This malware infiltrates your computer, encrypts your files, and demands a ransom... Read more
Antoni Ransomware Seeks To Destroy Files on Infected PCs
Antoni Ransomware is a type of malware that encrypts the files on a victim's computer and demands a ransom payment in exchange for a decryption key. This ransomware is distributed through various means, including... Read more
Zhong Ransomware Will Lock Your System
During a check of new malware samples, our team of researchers stumbled upon the Zhong ransomware. This particular type of malware is used to encrypt data in order to extort a ransom from the victim. We tested Zhong... Read more
AttackSystem Ransomware Targets Large Entities
During our investigation of newly submitted programs to the VirusTotal website, our research team uncovered a ransomware-type program called AttackSystem that belongs to the MedusaLocker ransomware family. We tested... Read more
SethLocker Ransomware Leaves Filenames Untouched
SethLocker is a type of malware that uses ransomware tactics to encrypt data and demand a ransom for its decryption. Unlike other similar malware that renames encrypted files with an extension, SethLocker does not... Read more
Gash Ransomware Uses Ransom Note Similar to Djvu
The discovery of the Gash ransomware was made by our team during a routine inspection of new malware samples. This harmful program belongs to the Djvu ransomware family. After testing the Gash ransomware on our... Read more
A Qore Ransomware Infiltration Could Mean Loss of Personal Files
Qore Ransomware is a vicious malware threat that targets computers running the Microsoft Windows operating system. It is a file-encrypting virus that uses strong encryption algorithms to lock files on the infected... Read more
BlackSuit Ransomware Affects Both Windows and Linux Machines
BlackSuit is a type of malware that encrypts files, making them inaccessible to their owners. It is designed to attack both Windows and Linux systems. Along with encrypting the data, BlackSuit also alters the desktop... Read more
CrypBits256 Ransomware Uses Ransom Note in Portuguese
During our routine examination of new malware samples, our team of researchers came across the CrypBits256 ransomware. CrypBits256 is part of the Xorist ransomware family and operates by encrypting data and demanding... Read more
Sato Ransomware Doubles Ransom Demand in Three Days
While analyzing new malware samples, our team encountered Sato ransomware, which is a member of the Djvu family. Sato is capable of encrypting files on a computer and appending the ".sato" extension to their... Read more
DVN Ransomware Asks for a Small Amount of BTC as Ransom
Our research team recently stumbled upon DVN, a type of ransomware that is a variation of Chaos ransomware, while analyzing new malware samples. The main goal of DVN ransomware is to encrypt data, and it accomplishes... Read more
What is FSHealth Ransomware?
FSHealth Ransomware is a malicious program that encrypts user files on Windows-based systems. Once infected, the ransomware displays a ransom note demanding payment in exchange for the decryption of the files. The... Read more
Qopz Ransomware Spreads In Sneaky Ways To Target Files for Encryption
Qopz ransomware is a type of malware that encrypts files on the infected computer, making them inaccessible to the user. The attackers then demand a ransom payment in exchange for a decryption key to restore the... Read more
GAZPROM Ransomware Will Lock Your Files
GAZPROM is a form of malware that utilizes the code of the CONTI ransomware to encrypt data and demand a ransom in exchange for its decryption. We tested GAZPROM on a testbed and observed that it appended the... Read more
Fofd Ransomware Joins Djvu Clone Family To Encrypt Files
Our research team discovered Fofd, a ransomware belonging to the Djvu family, during the review of recently discovered malware samples. Fofd encrypts files on the victim's computer and demands a ransom payment in... Read more
Saba Ransomware is a Djvu Clone That Seeks Files For Encryption
During our examination of malware samples, we came across Saba, which is a ransomware variant belonging to the Djvu ransomware family. Saba encrypts files and modifies their filenames by appending the ".saba"... Read more
Attack Ransomware is a MedusaLocker Variant
During an examination of new malware samples, our team of researchers came across a type of ransomware known as Attack. This malware, which belongs to the MedusaLocker ransomware family, encrypts data and requests... Read more
