VCrypt Ransomware Sample Download

VCrypt Ransomware encrypt user data using 7Zip, a legitimate file encryption program, and then delete the original folder. Apparently it is target toward French speaking victims. When the malicious program unpack itself and execute it extract command line version of 7zip, 7za.exe and a script that instruct 7zip executable to find folders and 7zip them with a hard coded password and then delete the original folder. This then repeated for every drive. .vxcrypt extension is added to the archived file. The hard coded password is "Oezfdse6f5esf413s5fd4e6fSQ45R424EDDEZS".

A user can get its file back by simply providing this password on extraction. Once the execution is ends it open Internet Explorer and display a ransom note with all the information to the victim.

VCrypt Ransom Note

VCrypt Ransomware Signatures

Family: Ransom:Win32/VCrypt!MTB
MD5: d32ff14c37b0b7e6c554ce3de5a85454
SHA256: e9056b5596854e3473033e3b28577c83a70f1b5be20e4b1cf529688ad7591b70

VCrypt Ransomware Download

		PonyFinal Ransomware Sample Download PonyFinal is a Java based ransomware that is deployed in human operate...
		FUCKUNICORN Ransomware Sample Download FUCKUNICORN ransomware threatens pharmacies and medical businesses. It...
		Ako Ransomware Sample Download Ako ransomware encrypts the data of computers on the local network run...
		SepSys Ransomware Sample Download SepSys Ransomware encrypts user data using AES, and then requires a ra...
		Jigsaw Ransomware Sample Download Jigsaw Ransomware and old malware is back with a phishing campaign th...
		LockBit Ransomware Sample Download LockBit Ransomware is an emerging threat and growing stronger day by ...
		Sadogo Ransomware Sample Download Sadogo Ransomware encrypts user file and ask ransom of $1500 in Bitco...
		VoidCrypt Ransomware Sample Download The VoidCrypt Ransomware, also known as Chaos Ransomware, it uses both...

VCrypt Ransomware Sample Download

VCrypt Ransomware Signatures

VCrypt Ransomware Download

Related Posts