Ransomware
Cdcc Ransomware Will Hold Your Data Hostage
After a recent analysis of malicious file samples, we discovered the Cdcc ransomware that is linked to the Djvu ransomware family. Its primary objective is to encrypt data, appending the ".cdcc" extension to filenames... Read more
Lockxx Ransomware Comes With Chinese Ransom Note
During our analysis of the malicious software, we observed that Lockxx functions as ransomware: it encrypts files, adds the extension ".lockxx" to file names, and presents a ransom note ("lockxx.recovery_data.hta").... Read more
Backoff Ransomware Changes System Wallpaper
Our research team identified the Backoff ransomware during an examination of new file samples. This malicious software is part of the Chaos ransomware family, a type of malware known for encrypting data and demanding... Read more
SNet Ransomware Locks Most Files
Our team discovered the SNet ransomware during a routine examination of new malware samples. Ransomware, a type of malicious software, functions by encrypting data and then demanding a ransom for its decryption. Upon... Read more
BaN Ransomware Locks Most Files
BaN, a type of ransomware associated with the Xorist family, was detected during the analysis of new file samples. BaN is designed to encrypt files and appends the ".BaN" extension to filenames. Alongside this, it... Read more
MEOW Ransomware is a Threat Despite Funny Name
MEOW operates as a type of ransomware, originating from the CONTI ransomware. It employs file encryption and appends the ".MEOW" extension to the filenames of the affected files. Additionally, the ransomware leaves... Read more
Xrp Ransomware Encrypts Victim Drives
While examining new malware samples, we encountered a ransomware variant known as Xrp, affiliated with the GlobeImposter family. Xrp's primary objective is to encrypt files, appending an email address and the ".xrp"... Read more
Rdptest Ransomware Encrypts Your Files
Rdptest is a type of ransomware. After infiltrating the operating system, Rdptest encrypts and alters the filenames, displaying two ransom notes ("info.hta" and "info.txt"). This specific ransomware is a member of the... Read more
Press Ransomware Threatens Double Extortion
Press is a form of ransomware, a type of malicious program designed to encrypt data and demand payment for its decryption. In a similar fashion, the Press ransomware renames encrypted files by adding a ".press"... Read more
Avanzi Ransomware Expects Payment in Bitcoin
During the examination of new malware samples, we identified a ransomware variant named Avanzi, associated with the Dharma family. Once it infiltrates a computer successfully, Avanzi encrypts files, modifies... Read more
PatchWorkApt Ransomware is a New Chaos Spinoff
PatchWorkApt is a newly discovered variant of the Chaos ransomware. Upon infiltrating a computer system, PatchWorkApt encrypts files, adds a series of random characters to filenames, and generates a ransom note named... Read more
CoV Ransomware Belongs to the Xorist Family of Clones
CoV is a ransomware variant associated with the Xorist family. Upon infecting a computer, CoV encrypts files and adds the ".CoV" extension to their filenames. Additionally, it alters the desktop wallpaper, displays an... Read more
ZeroGuard Ransomware Locks Victim Systems
ZeroGuard is a type of ransomware, characterized by its malicious nature. This malware is specifically designed to encrypt files and then demand payment for their decryption. In our testing, when we executed a sample... Read more
Kasseika Ransomware Uses Advanced Infiltration Method
The ransomware group named Kasseika has recently adopted the Bring Your Own Vulnerable Driver (BYOVD) attack technique to disable security-related processes on compromised Windows hosts. This aligns it with other... Read more
Wessy Ransomware Will Encrypt Your System
During the examination of new malicious files, our researchers identified the Wessy ransomware. This type of malware encrypts data with the intention of demanding a ransom for its subsequent decryption. Upon... Read more
Karsovrop Ransomware Demands Bitcoin Ransom
Karsovrop, a type of ransomware, is a malicious program that encrypts data and demands ransom payments for decryption. Our research team encountered Karsovrop while going over newly discovered malicious file samples.... Read more
Mesmerised Ransomware Encrypts Victim Files
Our research team came across Mesmerised ransomware while examining recently discobered file samples. This malicious software is crafted to encrypt files and demand ransom payments for decryption. During our testing... Read more
AeR Ransomware is Based on Dharma Code
AeR, a malicious program affiliated with the Dharma ransomware family, encrypts files and demands ransoms for their decryption. AeR encrypts files and modifies their names by appending a unique ID assigned to the... Read more