You are welcome to discuss various security topics with our professional team and other users like you!
Read our Registration Agreement and create your FREE account here!

*

Execute

  • *****
  • 388
  • +55/-0
  • Your friendly neighbourhood IT guy
      • View Profile
PayDOS / Serpent ransomware does not encrypt files!
« on: November 07, 2016, 09:42:56 am »
A ransomware in development, that has 2 versions, does not encrypt files.
The versions are named PayDOS and Serpent. You can see their notes here:



The messages are loaded from .batch files using the command line interface.

The email is fake and files are only renamed with the .dng extension.
The passcodes are: AES1014DW256 and RSA1014DJW2048.
Using the passcodes is easier to rename your files back to what they were.

The ransomware is currently not distributed, and this information
is solely for the people that somehow got infected with it.

Best Regards,
Execute