eCh0raix Ransomware Sample Download
Ch0raix is a compact Go program (the code takes up no more than 400 lines). Authors of the ransomware picked up passwords by brute forcing the servers. It communicate with with C&C which are located on TOR network via SOCKS5 proxy from where it downloads the ransom note, a RSA public key to encrypt the key it employs when encrypting its victim's files, and to provide the attackers with real-time insight on the malware's activity. It however, does not send system information to its server.
eCh0raix Ransomware Signatures
Family: HEUR:Trojan-Ransom.Linux.Cryptor.b MD5: da34c9a18d9693accc477b12695bcf37 SHA256: 154dea7cace3d58c0ceccb5a3b8d7e0347674a0e76daffa9fa53578c036d9357
eCh0raix Ransomware Download
| Xbash Ransomware, Botnet Malware Sample Xbash is a unique malware that is a ransomware, botnet, a worm and a ... | |
| CRING Ransomware Download CRING ransomware encrypts business user and server data with AES-128 +... | |
|
| REvil Ransomware Download REvil Ransomware, also known as Sodinokibi, is a ransomware that infec... | |
| Hades Ransomware Download An unknown threat group is deploying a variant of Hades in targeted at... | |
| WastedLocker Ransomware Download This WastedLocker ransomware encrypts the data of companies, business... | |
|
| Phoenix CryptoLocker Ransomware Download Phoenix CryptoLocker Ransomware force the insurance giant CNA to halt... | |
| BlackKingdom Ransomware Download BlackKingdom ransomware is another ransomware, known so far, that is a... | |
|
| DearCry Ransomware Download DearCry Ransomware or as Microsoft debut it as DoejoCrypt Ransomware ... |