LooCipher encrypts the files using AES-128 and adds the extension .lcphr. Emisoft publish a free decryptor for it.
MegaCortex Ransomware target the corporate sector and are trying to gain access to the organization’s domain controller in order to deliver the ransomware to the maximum number of workstations.
Sodin, Sodinokibi, REvil or BlueBackground Ransomware encrypts user data with AES, and then requires a ransom at 0.475–0.950 BTC to return files. It exploits a zero-day, CVE-2018-8453, was previously abused by an APT, and was patched in the Oct 18 Patch Tuesday.
LooCipher Ransomware encrypts user data with AES, and then requires a ransom in BTC to return files. It spreads via spam email campaigns. It spread macro enabled word document called Info_BSV_2019.docm
GoldBrute is a Brute-Force campaign which involves more than 1.6 million RDP servers spread all over the world and publicly accessible via the Internet. It exploits BlueKeep vulnerability, a critical remote code execution vulnerability in Remote Desktop Services (RDS) identified by CVE-2019-0708.