Onyx Ransomware

Onyx Ransomware
Onyx Ransomware is the based on the Chaos Ransomware. It encrypts used and data ask a ransom of $100,000 in BTC to get the files back. It starts is operations in mid April of 2022. It backup user data before encrypting it suggesting to employ double encryption technique. As of writing it has data of 7 companies in their hands. Onyx Ransomware deliberately corrupts file larger than 2 MB in size, which makes paying ransom pointless. The following extension is added to the encrypted files: .ampkcz. Onyx Ransom Note

Onyx Ransomware Signatures

Family: Ransom:MSIL/FileCoder.AD!MTB
MD5: cf6ff9e0403b8d89e42ae54701026c1f
SHA256: a7f09cfde433f3d47fc96502bf2b623ae5e7626da85d0a0130dcd19d1679af9b

Onyx Ransomware Download

Download Onyx Ransomware Sample