Zeppelin Ransomware is successor of VegaLocker and is written in Delphi. Zeppelin is a highly configurable malware and can be deployed as an EXE, DLL, or wrapped in a PowerShell loader.

Prometheus Ransomware encrypts user data with and ask a ransom of $15000 in Monero (XMR) coins. Attackers threatens to release all the data they claimed to have siphoned off.

Matryoshka Ransomware encrypts user data and asked a ransom of $75 worth of Monero (XMR) coin to return files back and gives a 20 days deadline to fulfill there demands.

Cuba Ransomware encrypts user data ChaCha20 and encrypt key information with RSA. Cuba Ransomware has purportedly been active since Q4, 2019. However they gained fame after publishing leaked documents from there victim companies that failed or denied to pay ransom.

N3TW0RM Ransomware target israeli business, it encrypt files and ask 4 BTC in ransom to return files.