eCh0raix Ransomware Sample Download
Ch0raix is a compact Go program (the code takes up no more than 400 lines). Authors of the ransomware picked up passwords by brute forcing the servers. It communicate with with C&C which are located on TOR network via SOCKS5 proxy from where it downloads the ransom note, a RSA public key to encrypt the key it employs when encrypting its victim's files, and to provide the attackers with real-time insight on the malware's activity. It however, does not send system information to its server.
eCh0raix Ransomware Signatures
Family: HEUR:Trojan-Ransom.Linux.Cryptor.b MD5: da34c9a18d9693accc477b12695bcf37 SHA256: 154dea7cace3d58c0ceccb5a3b8d7e0347674a0e76daffa9fa53578c036d9357
eCh0raix Ransomware Download
| Xbash Ransomware, Botnet Malware Sample Xbash is a unique malware that is a ransomware, botnet, a worm and a ... | |
|
| Avaddon Ransomware Sample Download Avaddon ransomware encrypts user data using AES-256 + RSA-2048, and th... | |
| PonyFinal Ransomware Sample Download PonyFinal is a Java based ransomware that is deployed in human operate... | |
|
| FUCKUNICORN Ransomware Sample Download FUCKUNICORN ransomware threatens pharmacies and medical businesses. It... | |
|
| Ako Ransomware Sample Download Ako ransomware encrypts the data of computers on the local network run... | |
| VCrypt Ransomware Sample Download VCrypt Ransomware encrypt user data using 7Zip, a legitimate file enc... | |
|
| SepSys Ransomware Sample Download SepSys Ransomware encrypts user data using AES, and then requires a ra... | |
|
| Jigsaw Ransomware Sample Download Jigsaw Ransomware and old malware is back with a phishing campaign th... |