eCh0raix Ransomware Sample Download
Ch0raix is a compact Go program (the code takes up no more than 400 lines). Authors of the ransomware picked up passwords by brute forcing the servers. It communicate with with C&C which are located on TOR network via SOCKS5 proxy from where it downloads the ransom note, a RSA public key to encrypt the key it employs when encrypting its victim's files, and to provide the attackers with real-time insight on the malware's activity. It however, does not send system information to its server.
eCh0raix Ransomware Signatures
Family: HEUR:Trojan-Ransom.Linux.Cryptor.b MD5: da34c9a18d9693accc477b12695bcf37 SHA256: 154dea7cace3d58c0ceccb5a3b8d7e0347674a0e76daffa9fa53578c036d9357
eCh0raix Ransomware Download
| REvil Ransomware Linux Download REvil Ransomware has now a new tentacle for Linux machines. It is cau... | |
| AgeLocker Ransomware Download AgeLocker use AGE (Actually Good Encryption) algorithm for encrypting... | |
| Xbash Ransomware, Botnet Malware Sample Xbash is a unique malware that is a ransomware, botnet, a worm and a ... | |
|
| Haron Ransomware Download Haron Ransomware is heavily inspired from Thanos Ransomware and Avaddo... | |
|
| Hive Ransomware Download Hive ransomware encrypts user data and ask them to negotiate ransom p... | |
|
| DJVU STOP Ransomware Download DJVU Ransomware belong to the family of STOP Ransomware. It had been a... | |
|
| PayloadBIN Ransomware Download PayloadBIN Ransomware is attributed to the Evil Corp group. In 2019 th... | |
| SplinterJoke Ransomware Download SplinterJoke Ransomware encrypts user files and data and asks them to... |