Ransomware
RED BANNER Ransomware Asks for 0.01 BTC as Ransom Despite Being a Fake
During our review of malware samples, our team came across a type of fake ransomware known as "scareware" called RED BANNER. This malicious software is designed to trick unsuspecting users into believing that their... Read more
Kifr Ransomware Increases Ransom Amount After 72 Hours
During our analysis of malware samples, our researchers discovered Kifr ransomware, a variant of the Djvu family. Like other ransomware, Kifr encrypts files and adds the ".kifr" extension to their names. The... Read more
Wikon Ransomware is an Xorist Clone Targeting Random Files For Encryption
While analyzing malware samples, our researchers came across a new variant of the Xorist ransomware family called WiKoN. This ransomware encrypts files, modifies their extensions by appending ".WiKoN," alters the... Read more
Cylance Ransomware Targets Both Windows and Linux
Our team of malware researchers discovered ransomware named Cylance, which is designed to encrypt files and prevent victims from accessing their data. Once installed on the system, Cylance adds the ".Cylance"... Read more
Jycx Ransomware is a Djvu Threat Family Member Looking To Encrypt Your Files
In the course of our investigation, we uncovered Jycx, a type of ransomware that utilizes file encryption and modifies file names by appending the ".jycx" extension. Additionally, it creates a ransom note file named... Read more
Hairysquid Ransomware is a Mimic Variant Targeting Your Important Files
Hairysquid is a type of ransomware that encrypts files and changes their file names by appending the ".Hairysquid" extension. It's a new variant of the Mimic ransomware and also generates a ransom note called... Read more
Kitz Ransomware Will Scramble All Your Files
During our review of recently submitted malware samples, our team discovered Kitz, a type of ransomware belonging to the Djvu ransomware family. This malware can be distributed in conjunction with other types of... Read more
Money Message Ransomware is a Serious Threat Despite Goofy Name
Money Message is a type of malicious software that encrypts files and generates a ransom note named "money_message.log." Unlike other ransomware, Money Message does not change the names of files or add an extension to... Read more
Nitz Ransomware Ramps Up Ransom Sum in Three Days
Upon analyzing malware samples, we discovered a new variant of the Djvu ransomware family known as Nitz. Its primary goal is to encrypt files on the affected device and modify their names by appending the ".nitz"... Read more
Nifr Ransomware Will Lock All Your Files
If you find that you are unable to access your files, including documents and images, and they have a ".nifr" extension, it means that your computer has been attacked by a variant of the STOP/DJVU ransomware. This... Read more
Rn Ransomware Uses Ransom Note in Russian
Rn is a type of malicious software known as ransomware, which uses encryption to prevent users from accessing their files. Along with encrypting files, Rn also alters the filenames by appending the extension ".rn" and... Read more
Sus Ransomware Demands Payment in Bitcoin to Restore Encrypted Back
Our team recently discovered Sus ransomware while analyzing malware samples. We found that Sus is a variant of the Chaos ransomware, which encrypts data and changes the filenames of all encrypted files by appending... Read more
Kiwm Ransomware is a Djvu Variant Loaded With File Encryption Methods
During the examination of malware samples, we discovered a new type of malware called Kiwm, which belongs to the Djvu ransomware family. Kiwm encrypts files on the infected system and adds a ".kiwm" extension to their... Read more
BlackByteNT Ransomware Does Not List Ransom Amount
BlackByteNT is a type of ransomware that employs encryption to block access to files. In addition, it modifies the names of files by appending a ".blackbytent" extension and replacing their original names with a... Read more
Niwm Ransomware is Another Generic Djvu Clone Targeting Files for Encryption
During the analysis of malware samples, our team of malware researchers identified Niwm, which is a type of ransomware belonging to the Djvu family. Ransomware is a type of malware that encrypts files, and Niwm is no... Read more
D7k Ransomware Mocks Victims in Ransom Note
D7k is a form of ransomware that is programmed to encode all files on the targeted device and adds the ".D7k" extension to the end of each encrypted file's name. Additionally, D7k generates a text file named... Read more
Dark Power Ransomware Expects Ransom in Monero Cryptocurrency
Dark Power is a type of ransomware that uses encryption to prevent victims from accessing their files. It also alters the filenames by appending the ".dark_power" extension and creates a ransom note in the form of a... Read more
Jyos Ransomware Doubles Ransom Demands in Three Days
While analyzing malware samples found online, we came across a new form of ransomware known as Jyos. After conducting further research, we discovered that Jyos belongs to the Djvu ransomware family and is primarily... Read more
