Ransomware
Buddyransome Ransomware Encrypts Most File Types
Buddyransome is a ransomware that encrypts data and adds the ".buddyransome" extension to file names. For example, if a file was previously named "1.jpg", it will now be called "1.jpg.buddyransome". Furthermore, upon... Read more
Winner Ransomware is Another VoidCrypt Variant
Winner is a malicious, ransomware program that belongs to the VoidCrypt family. When it is executes, it encrypts files and changes their filenames by adding a unique ID, the criminals' email address, and a ".Winner"... Read more
What is the Bozewerkers Ransomware?
We recently came across a new ransomware variant called Bozewerkers. It encrypts data and adds the ".givemenitro" extension to filenames, as well as changing the desktop wallpaper and displaying a ransom note. For... Read more
What is the BoY Ransomware?
Our research team recently identified a new ransomware program called BoY. This malicious software is part of the Xorist ransomware family and works by encrypting data and demanding payment for decryption. Files... Read more
GOGO Ransomware is a New VoidCrypt Offshoot That Encrypts Data
GOGO is a ransomware-type program that belongs to the VoidCrypt ransomware family. It encrypts files and appends them with a unique ID, the cyber criminals' email address, and a ".GOGO" extension. A file originally... Read more
Pouu Ransomware is a New Djvu Clone
Pouu is a type of ransomware that belongs to the Djvu family. It encrypts data and adds the ".pouu" extension to filenames, as well as creating a "_readme.txt" file with instructions for victims. Our malware... Read more
What is the FilesEncrypted Ransomware?
Our researchers recently came across the FilesEncrypted ransomware - a member of the MedusaLocker family, which is capable of encrypting files on affected computers. The infected files are appended with... Read more
What is the R0n Ransomware?
R0n is a type of ransomware that encrypts files and appends the victim's ID, email address, and ".r0n" extension to filenames. Our team discovered this malicious software while inspecting malware samples submitted to... Read more
Mzop Ransomware is a New Djvu Clone
Mzop is a ransomware that encrypts files and adds the ".mzop" extension to their filenames, as well as creating a ransom note called "_readme.txt". It has been identified by our team while inspecting malware samples... Read more
What is the 725 Ransomware?
Our researchers recently discovered a new ransomware called 725. It is believed to have been developed by the same threat actors behind 32T ransomware. When deployed, it encrypts files and appends the ".725" extension... Read more
STEEL Ransomware is a New Phobos Variant
We recently discovered a new ransomware variant belonging to the Phobos family called STEEL. This malicious software encrypts files and adds a unique ID, an email address (codeofhonor@tuta.io), and the ".STEEL"... Read more
What is the Tzw Ransomware?
Tzw is a ransomware-type program that was discovered by researchers while inspecting new submissions to online virus databases. When executed, it encrypts files and changes their titles, adding the ".tzw" extension. A... Read more
What is the Nlb Ransomware?
Our researchers recently identified a new ransomware variant, Nlb, which is part of the Dharma family. Upon launching the malicious program, it encrypted files and changed their titles by adding a unique ID, the... Read more
Mztu Ransomware is Another Djvu Variant Encrypting Data
Mztu is a ransomware variant that belongs to the Djvu family. It was discovered by our team while inspecting malware samples submitted to VirusTotal. Mztu encrypts files and appends the ".mztu" extension to filenames,... Read more
Mzqw Ransomware is a New Djvu Clone
Mzqw is a type of ransomware that belongs to the Djvu family. It was identified by malware researchers while examining samples submitted to online threat databases. Mzqw encrypts data and adds a ".mzqw" extension to... Read more
ENCODED Ransomware Asks for Modest Ransom
ENCODED is a type of ransomware that encrypts data and appends the ".ENCODED" extension to filenames. It also drops a "HOW TO DECRYPT FILES.txt" file, which contains ransom notes, and changes the desktop wallpaper.... Read more
What is the Poqw Ransomware?
Poqw is a type of ransomware that encrypts files and adds the extension ".poqw" to the filenames. It was discovered while analyzing malware samples submitted to online threat databases. Poqw may be bundled together... Read more
Nyx Ransomware Lists No Ransom Sum
Nyx ransomware is a malicious software that encrypts files and appends the victim's ID, an email address, and the ".NYX" extension to filenames. It also drops a "READ_ME.txt" file with instructions on how to restore... Read more
