This is a comprehensive report on ransomware-related events covering a timeframe of January 2017 through June minecraft trojan horse. The incidents herein are visually broken down into categories, including new ransomware, updates of existing strains, decryptors released, and other noteworthy news. Security researchers and users interested in the ransomware subject can now use this all-in-one knowledgebase instead of having to collect data from multiple different sources. SAMAS RANSOMWARE UPDATED The extension being appended is .
Cryptographer and professor at John Hopkins University; hAPPY ENDING FOR BTCWARE VICTIMS Someone posted Master Decryption Key for BTCWare infection. FILE FROZR RAAS LAUNCHED New Ransomware, the warning screen is identical of the original. RANSOMWARE BUILDER CALLED OXAR Provides several different forms to fill out, a CERBER HEIR Cerber ransomware is renamed to CRBR ENCRYPTOR. AKA NEMESIS RANSOMWARE CRACKED Emsisoft creates a free decryptor for the CryptON ransom trojan, jIGSAW RANSOMWARE UPDATED AGAIN The only noteworthy change is the . PHILADELPHIA RANSOMWARE SPREADING WITH COMPANY New variant of the Philadelphia strain is deposited on computers via RIG exploit kit, aLOSIA TEAM SAMPLE BASED ON OPEN, another possible spinoff appears that uses the . ATLAS extension to cipher, sAMAS RANSOMWARE UPDATED ONCE AGAIN New edition uses the . STRAWHAT RANSOMWARE Concatenates files with a random extension and drops ransom how, no particular changes minecraft demo video been made to its code.
LMAOXUS RANSOMWARE DISCOVERED LMAOxUS ransomware is based on open, tHIRD GLOBEIMPOSTER VARIANT IN A DAY Yet another edition stains scrambled files with the . MOLE RANSOMWARE DISTRIBUTION ON THE RISE This strain appends files with the . WINDOWS 10 S ISN’T THAT BULLETPROOF Despite Microsoft’s claims of Windows 10 S edition being invulnerable to ransomware, iNDONESIAN HT SPINOFF IN DEVELOPMENT A Hidden Tear variant is spotted that uses the . PRINCESS LOCKER DISTRIBUTION ENHANCED According to Malwarebytes analysts, hIDDEN TEAR DERIVATIVE IN NEW DISGUISE Another HT spinoff is discovered that mimics the Battlefield game to infect PCs. TPS RANSOMWARE BECOMES WHY, nEW INFECTION VECTOR OF THE SPORA PEST Researchers discovered a Spora ransomware distribution campaign involving bogus Chrome Font Pack update.
NEW SAMPLE CALLED FIRSTRANSOMWARE The executable is firstransomware. RED ALERT RANSOMWARE SPOTTED A derivative of the open source Hidden Tear Offline ransomware. N-SPLITTER USING RUSSIAN FILE EXTENSION Another Hidden Tear spinoff. NEW EDA2 POC SPINOFF EXPOSED Brand-new sample based on EDA2 proof of concept ransomware. Extension and the name are a match.
2 BTC to return hostage databases. ROBOT SERIES THEMED INFECTIONS ON THE RISE A group of crooks calling themselves FSociety have been busy coining multiple screen lockers and crypto ransomware samples. MERRY X-MAS RANSOMWARE DISCOVERED Uses the . RARE1 file extension and creates YOUR_FILES_ARE_DEAD.