VCrypt Ransomware Sample Download
VCrypt Ransomware encrypt user data using 7Zip, a legitimate file encryption program, and then delete the original folder. Apparently it is target toward French speaking victims. When the malicious program unpack itself and execute it extract command line version of 7zip, 7za.exe and a script that instruct 7zip executable to find folders and 7zip them with a hard coded password and then delete the original folder. This then repeated for every drive. .vxcrypt extension is added to the archived file. The hard coded password is "Oezfdse6f5esf413s5fd4e6fSQ45R424EDDEZS".
A user can get its file back by simply providing this password on extraction. Once the execution is ends it open Internet Explorer and display a ransom note with all the information to the victim.
VCrypt Ransomware Signatures
Family: Ransom:Win32/VCrypt!MTB MD5: d32ff14c37b0b7e6c554ce3de5a85454 SHA256: e9056b5596854e3473033e3b28577c83a70f1b5be20e4b1cf529688ad7591b70
VCrypt Ransomware Download
| Hentai Oniichan Ransomware Sample Download Hentai Oniichan Ransomware encrypts user data with Rijndael and then d... | |
| Polar Ransomware Sample Download Chinese hackers moves in to lucrative market of ransomwares and Polar ... | |
|
| Babuk Locker Ransomware Sample Download Babuk Locker Ransomware uses its own implementation of SHA256 hashing... | |
| 16x Ransomware Sample Download 16x Ransomware also know as Chinese ransomware encrypts its victim fil... | |
|
| Conti Ransomware Sample Download Conti Ransomware is the successor of the notorious Ryuk Ransomware. I... | |
|
| Pysa Ransomware Sample Download Pysa Ransomware, also know by its former name Mespinoza Ransomware is... | |
|
| MountLocker Ransomware Sample Download MountLocker ransomware encrypts company and business user data with C... | |
|
| Ranzy Ransomware Sample Download Ranzy Locker Ransomware is the successor of Ako Ransomware and Thunde... |