HDDCryptor or HDD Cryptor Ransomware, also know as Mamba virus is new computer’s MBR (Master Boot Record) locker. Once computer system is infected with HDDCryptor, MBR (Master Boot Record) will be rewrited and boot sectors locked. Victims will no longer able to access infected PC. The behaviour of this virus is similar to both Petya and Satana ransomware.
Atom ransomware, once before know as a Shark project has a new brand. The Shark ransomware project first came across in July 2016 as an affiliate platform. Now the new Atom affiliate program, offers some improvements to anyone who wants to get involved cyber-crime business. A new name or brand can mean only one thing.
Crypt0 Ransomware is a new Detox variant discovered by MalwareHunterTeam. The name of the ransomware is based on the ransom extension “_crypt0”. As any ransomware Crypt0 will encrypt victim’s files using AES. Locked files will no longer able to open and “_crypt0” will be added before the extension of the files. If user wants to unlock them.
NoobCrypt Ransomware was discovered by security researcher Jakub Kroustek. What seems to be the case with this ransomware is that developer is low skilled (noob) and dubbed this virus NoobCrypt. The weakness of this ransomware allowed Jakub to reveal the password and provided it to victims to unlock files.
LockLock Ransomware recently spotted to infect users with chinese IPs. So far victims are only from China, however judging by the ransom note this virus may start spreading worldwide. Ransomware is powerful malware (malicious software) virus that executes cryptography attack using variety of encryption algorithms.
World War Ransomware. Ransomware is powerful malware (malicious software) virus that executes cryptography attack using variety of encryption algorithms. Ransomware developers simply use crypto techniques to lock victim’s files and demand ransom in return of decryption key. As victim’s data is locked, files are in on use and no longer able to open due to encryption.
firstname.lastname@example.org ransomware seems to be а new CrySiS variant. It uses variety of email while infecting users and new variants keep getting reported. The behaviour is similar to all reported variants. Since first discovered CrySiS was not very active, however few months later the activity rising is significant.
CryPy ransomware is new virus discovered by AVG Jakub researcher. It appears that this ransomware is written with Python and use AES-256 to lock a victim’s files. All encrypted files will be renamed to CRY<random characters>.cry. This is also an extension .cry, which will be appended to locked files. A interesting reported by Jakub feature is that CryPy ransomware.
Philadelphia ransomware is a new variant of Stampado virus. Developer of this malware is named “The Rainmaker” and by the fact that Philadelphia Ransomware is being sold for 400 USD, he wants to offer the apertunity to anyone who wants to be cyber criminal and provide an advanced ransomware into the hands of anyone.
Cerber3 ransomware is the latest Cerber development after .cerber2 extension. Previously Cerber was decrypted, however soon after the decryption tool was developed it stopped working due to cerber update. Now we see a constant change of extension. Once “.cerber” later “.cerber2” now “.cerber3” and may be the next will be “.cerber4”.