De fleste Latterlig Ransomware i 2016 - Hvordan, Teknologi og pc-sikkerhed Forum | SensorsTechForum.com
CYBER NEWS

De fleste Latterlig Ransomware i 2016

1 Star2 Stars3 Stars4 Stars5 Stars (Ingen stemmer endnu)
Loading ...

laver du sjov med mig

Ransomware er nutidens mest hadede computervirus. Men, den destruktivitet af hver ransomware afhænger af sine rødder. Er det en del af en aktiv, meget vellykkede ransomware familie periodisk frigive nye versioner? Or is it one of those oddly “shaped” viruses that could make you laugh (if it weren’t for the file encryption)?

We have been observing various ransomware viruses, and we can definitely say that some of them appear more… professional than others. The list you are about to encounter has gathered some of the less adept ransomware cases. How are they different than Locky og Cerber? It appears that these pieces were all “coined” by non-professional cyber criminals via the ransomware-as-a-service model. Just a look at their ransom notes is enough for you to determine the level of greatness of their creators.

Let’s not forget that malware-as-a-service has helped many willing souls turn to the Dark Side… eller, i dette tilfælde, to the Dark Web.

Uden videre, here are some of the funnier ransomware cases we have come across during our daily malware researches.


Hollycrypt Ransomware Demands Vodka

Hollycrypt is yet another cryptovirus based on the HiddenTear open source project. Each encrypted file will have the extension .Hollycrypt appended to it. It uses the AES encryption algorithm and demands Bitcoins or Vodka as payment:

stf-hollycrypt-ransomware-holly-crypt-hollyman37-virus-vodka-ransom-note-read-this-shit-message

FYI: HiddenTear og EDA2 er bredt accepteret som den første open source ransomware kodet til undervisningsformål. Denne idé hurtigt viste sig at være suspekt, da det ikke tage lang tid for cyberkriminelle at udnytte koden for ondsindede operationer.

Dette er Hitler-Ransonware!

Some ransomware were obviously coined by a) non-professional cyber crooks and b) non-English speakers with English as bad as the language skills of a Russian F-grader. The ransomware was still in development when it was uncovered by security researchers at AVG. Ikke desto mindre, the ransomware was still able to encrypt and even delete the compromised files. It could also cause a BSOD and lock the screen displaying an 1-hour deadline for the ransom to be paid. Most interestingly, the virus aimed to get users to purchase a Vodafone card for 25 Euros and add its code in a text box. And it also
displayed some quite poor English! Even ransomware is misspelled, as evident by the ransom note:

bsod-sensorstechforum-hitler-ransomware (2)


Decryptor Files Are Available at the Post Office!

A variant of the Troldesh/Shade ransomware family, døbt Drugvokrug727 was spotted recently. Tapetet placeret på en kompromitteret computer er udstyret med en digital skitse af hovedpersonen fra filmen ”The Big Lebowski” - den Dude.

STF-Drugvokrug727 @ Indien-com-ransomware-krypto-virus-det-fyr-den-store-Lebowski-desktop-screen-tapet

It may be a coincidence but this ransomware could really be called a “dude” as it didn’t specify a payment for its decryption key, and it also didn’t urge victims with a payment timeframe. Mere, Drugvokrug727 has already been decrypted by researchers!


Smadre! Ransomware Wants to Stab Your Files

The ransomware wants to be something it really isn’t – a deadly crypto virus that successfully encrypts files and is persistent to decryption. I stedet, Smadre! Ransomware is only capable of blocking access to various Windows processes and apps. Even though the ransom note screams violence and aggression, all it really turns out to be ismuch ado about nothing.

A vivid example of a poorly drawn ransomware:

smash-ransomware-champignon-fare-omg-sensorstechforum


This Ransomware Is the Grandpa You Wish You Never Had!

DedCryptor appends the .ded file extension to encrypted files. If you didn’t know, ded means grandpa in Russian. Once the victim’s files are encrypted, DedCryptor would change the wallpaper with a message that features a vulgar and demonized photo of Santa Claus, hvilket gør det hele synes som en joke. Tilsyneladende, DEDCryptor is no joke as it demands 2 Bitcoin der udgør 700 USD.

dedcryptor-stforum

Researchers believe that the ransomware may be a variant of the EDA2 open-source ransomware, suggesting the virus could have been posted for sale on deep web markets, thus generating more profit for the master minds of the operation.


Joke or No Joke, You Should Be Protected against All Ransomware

Plenty of people across the Internet have been victimized by ransomware.

En ransomware eller anden malware angreb skal have et pædagogisk formål, hvis intet andet. Et vellykket angreb bør øge brugerens paranoia og bør også gøre dem en smule mere forsigtig med online-aktiviteter af alle typer. Betydningen af ​​regelmæssige data backups og passende data hygiejne er større end nogensinde. There is no joke here.

If you’re reading these lines because you were attacked by any of the above-mentioned ransomware viruses, have a look at the steps provided below. And remember the phrase:

Fool me once, shame on you, fool me twice, shame on me!”

Avatar

Milena Dimitrova

En inspireret forfatter og indhold leder, der har været med SensorsTechForum for 4 år. Nyder ’Mr. Robot’og frygt’1984’. Fokuseret på brugernes privatliv og malware udvikling, hun tror stærkt på en verden, hvor cybersikkerhed spiller en central rolle. Hvis almindelig sund fornuft giver ingen mening, hun vil være der til at tage noter. Disse noter senere kan blive til artikler!

Flere indlæg

Efterlad en kommentar

Din e-mail-adresse vil ikke blive offentliggjort. Krævede felter er markeret *

Frist er opbrugt. Venligst genindlæse CAPTCHA.

Del på Facebook Del
Loading ...
Del på Twitter Tweet
Loading ...
Del på Google Plus Del
Loading ...
Del på Linkedin Del
Loading ...
Del på Digg Del
Del på Reddit Del
Loading ...
Del på Stumbleupon Del
Loading ...