Angry Duck ransomware, reported by security researcher Michael Gillespie is very dangerous type of malware. It will encrypt user data, generate a RSA key and demand a ransom fee in return of the decryption key. Many dub the ransomwares after the extension appended to locked files, however the name of this one comes from the ransom note image.
Thor ransomware or .thor extension is part of locky malware. It is considered to be dubbed Thor ransomawre after the extension, however it is Locky virus. A day after a new .shit extension appended to locked files a new locky variant is reported to append .thor extension. What is interesting is that all three extensions .odin, .shit and .thor are in distribution.
Shit ransomware or .shit extension is the new Locky malware variant that will lock your files and ask you to pay to unlock them. It appears to be related with the new Locky virus, “.shit” extension will be appended. Locky is now following the steps of cerber ransomware and almost every month we report something new from both developers.
DIGITALKEY@163.com.xtbl ransomware is part of CrySiS Ransomware variants. Since CrySiS was first reported in February, it was not widely spread, however not long after, many new varians were detected. All reported variants of CrySiS will encrypt user data, appending .xtbl extension. The main difference between CrySiS variants is that will have different emails.
Tech-connect.biz is a genuine browser hijacker contained in bundles with other freeware. It is included in the PUP (Potentially Unwanted Programs ) list and even considered a minor threat for user’s system it can cause serious troubles. Tech-connect.biz changes without user’s permission the default homepage and the search engine of most internet browsers.
Yourconnectivity.net is a part of the browser hijackers family. It is included in the PUP (Potentially Unwanted Programs ) list and even considered a minor threat for user’s system it can cause serious troubles. Yourconnectivity.net changes without user’s permission the default homepage and the search engine of most internet browsers.
Youndoo is a popular browser hijacker that is constantly evolving towards new methods of distribution. Now in the past few days users report a new type of activity affiliated with Youndoo. It seems that the browser hijacker has found a way to create new Google Chrome Profiles without the users knowledge. When the fake profile is created it changes your start page to www.youndoo.com.
Cerber ransomware what appears to be one of the best ever developed as of this time malware is yet again with a new variant. Since first discovered at beginning of 2016 Cerber was one of most widespread ransomware along with few more like locky. Cerber ransomware was attacking victims over the past few months.
Odin ransomware or .odin extension is the new Locky malware variant that will lock your files and ask you to pay to unlock them. It appears to be related with the new Locky virus, “.odin” extension will be appended. In middle of February 2016 Locky was first discovered and since then it was one of the biggest ransomware campaigns of the year.
FenixLocker ransomware is the most dangerous type of malware, which will encrypt user data. Encrypted files will be locked and victims will no longer able to access them. A private RSA key will be generated and supposedly stored into developers command and control server. This key will be the one to unlock files, however FenixLocker developers.