A new variation of ransomware, called “ AES256 “ is gaining popularity in the past few days. This virus behave like a typical ransomware. It will get into your system and will lock your files. In order to restore and decrypt them, Cryptorium will ask you to pay ransom. This malware does append a .aes256 file extension to all corrupted files.
You are browsing archives for
Goldeneye ransomware was recently spotted to be similar or may be related with Petya and Mischa. As previously spoken that Petya was installing a secondary Mischa ransomware and the malware developers are offering the development as an affiliate service, Goldeneye ransomware seems to be related.
Osiris ransomware or .Osiris extension is part of locky malware. It is considered to be dubbed Osiris ransomawre after the extension, however it is Locky virus. A day after a new .shit extension appended to locked files a new locky variant is reported to append .thor extension, .aesir extension, .zzzzz extension and now .osiris extension.
Since first reported cerber is one of the best ever developed as of this time ransomware. For the past few months cerber authors have introduced a new variants every single month beginning with .cerber2 extension to .cerber3 and variant with ransom 4char extension along with a new README.hta note. First reports regarding cerber attack were at the beginning of 2016.
CrySis ransomware master key reported to be published just recently by security researchers, which are working on a decryption tool. This a great news for victims suffered from CrySis rasnomware and .xtbl extension appended to locked files. Is this the end of CrySis projekt or developers are working on a new ransom development.
CerberTear ransomware is a HiddenTear cerber variant reported to append .cerber extension. It’s called CerberTear Ransomware after the extension .cerber, which is well known and HiddenTear development, what seems to be a combination of two vary famous developments. However there is no relation between cerber and HiddenTear ransomware.
Lock93 ransomware, the next ransomware on the table reported by MalwareHunterTeam. Ransomware is indeed the most dangerous type of malware, which will encrypt user data and demand a ransom fee in return of decryption key. The name Lock93 comes from the ransom extension appended to victim’s locked files.
Angry Duck ransomware, reported by security researcher Michael Gillespie is very dangerous type of malware. It will encrypt user data, generate a RSA key and demand a ransom fee in return of the decryption key. Many dub the ransomwares after the extension appended to locked files, however the name of this one comes from the ransom note image.
Thor ransomware or .thor extension is part of locky malware. It is considered to be dubbed Thor ransomawre after the extension, however it is Locky virus. A day after a new .shit extension appended to locked files a new locky variant is reported to append .thor extension. What is interesting is that all three extensions .odin, .shit and .thor are in distribution.
Shit ransomware or .shit extension is the new Locky malware variant that will lock your files and ask you to pay to unlock them. It appears to be related with the new Locky virus, “.shit” extension will be appended. Locky is now following the steps of cerber ransomware and almost every month we report something new from both developers.