Ransomware is dangerous. Has a button where you can enter a private key, even if wrong, and decrypt. If wrong key entered...
Show this thread
Hacked Ransomware. Appends .hacked and includes ransom notes in Italian, English, Spanish, and Turkish. Pretends to be a windows update.pic.twitter.com/G3lB5WQ3zf
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Numerous ransom notes created. Sample: https://www.virustotal.com/#/file/ed5653170b8a8b65e9d3e6ba355a4ffd76903c84cb0dbd63e7700e4ce9dc0651/detection …pic.twitter.com/vSnQ6Hfxwz
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Sorry. Here are two notes in English. The Turkish note is not presented.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I added this RW in Digest as HkCrypt or Hacked Ransomware http://id-ransomware.blogspot.ru/2017/09/hkcrypt-ransomware.html …
-
They use another email as well: payment.hkdecrypt@protonmail.com Cheers! :)
End of conversation
New conversation -
-
-
Thanks!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Q: what are the windows Api calls or processes will ransomwares request to encrypt files? Point me to a page/blog if possible...
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Any other site hosting the sample? Don't have a VTI private key :(
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.