eCh0raix Ransomware Sample Download
Update: A newer version of eChoraix ransomware is detected, that is capable of encrypting Synology devices too.
Ch0raix is a compact Go program (the code takes up no more than 400 lines). Authors of the ransomware picked up passwords by brute forcing the servers. It communicate with with C&C which are located on TOR network via SOCKS5 proxy from where it downloads the ransom note, a RSA public key to encrypt the key it employs when encrypting its victim's files, and to provide the attackers with real-time insight on the malware's activity. It however, does not send system information to its server.
eCh0raix Ransomware Signatures
Family: HEUR:Trojan-Ransom.Linux.Cryptor.b MD5: da34c9a18d9693accc477b12695bcf37 SHA256: 154dea7cace3d58c0ceccb5a3b8d7e0347674a0e76daffa9fa53578c036d9357
eCh0raix Ransomware Download
|
| HelloKitty Ransomware Linux Variant Download HelloKitty ransomware which became headlines for mounting attack on vi... | |
|
| eCh0raix Ransomware Download A new variant of eCh0raix ransomware is found to be encrypting not onl... | |
|
| BlackMatter Ransomware Download Linux BlackMatter Ransomware Linux variant that is caught targeting VMware E... | |
| REvil Ransomware Linux Download REvil Ransomware has now a new tentacle for Linux machines. It is cau... | |
| AgeLocker Ransomware Download AgeLocker use AGE (Actually Good Encryption) algorithm for encrypting... | |
|
| RedXOR Linux Backdoor Download Linux that was assumed to be "safe" from malware is getting attention... | |
| Spectre Exploit Download for Linux Spectre is a hardware design flaw in the architectures of Intel, AMD,... | |
|
| KOBALOS Linux Malware Download Kobalos, a new malware that targets Linux, FreeBSD and Solaris High ... |