FLKR Ransomware

Hackers do not plan to cut Internet users some slack anytime soon. An intimidating crypto-ransomware virus has caught our eye and this article is going to focus on giving an appropriate characterization for this sample. Firstly, it is called FLRK virus and is prepared to encrypt its victims’ files almost like any other infection that … Continued

Flyper Ransomware

Flyper ransomware, just like 8lock8 and EduCrypt ransomwares, has been developed from the source code of Hidden Tear ransomware project. Similarly to the both of the latter cryptomalwares, Flyper utilizes the popular asymmetric encryption algorithm, which is one of the most advanced ciphers recent file-encrypting threats use. While the basics of how this virus operates is … Continued

Foop File Virus

Foop is a new ransomware infection from the Djvu family. It spreads in pirating sites, often together with other malware. Foop renames your files to have “.foop” as a second extension and encrypts those files, breaking their internal data. What Foop does to your files is reversible in theory, but the chances to fix it are … Continued

Foqe Ransomware

Foqe is ransomware. It’s a malicious program that breaks user files, installs other malware, and then demands money in exchange for fixing the files. Antivirus scanners detect Foqe as Encoder, Filecoder, Ransom, Cryptor, Trojan, and other names. Besides getting your files back (which might not be possible), it’s important to delete Foqe and the malware that … Continued

FOX ransomware

FOX ransomware is a project developed by some cyber criminals that is meant to lure money out of people that got their computers infected. This infection is categorized as ransomware because it employs specific encryption technique to lock up the files that are stored on an infected computer and then demands a ransom in order … Continued

Foxy Ransomware

Foxy virus, also known as Foxy ransomware, is a rather dangerous infection that can cause severe damage to your computer. It is usual for ransomware infections to encrypt files stored on a victims’ computer and demand a ransom in order to unlock them. This time it’s not different – Foxy ransomware will trie to frighten … Continued

Frendi ransomware

Frendi ransomware is a newly discovered Phobos cryptovirus variant that has been recently discovered infecting users’ computers and locking precious personal data with strong algorithms later demanding for the payment in exchange for the decrypting key. This virus can be easily recognized from the ‘.Frendi’ extension mark left at the end of affected files’ names … Continued

FriedEx virus

FriedEx virus is a dangerous ransomware targeted to get cryptocurrencies. It comes from a trojan family of DriedEx – distributor of trojans that have been attacking various companies all around the world for years now. FriedEx is not that different from other trojans from CriedEx family and it’s primal target remains to be various companies … Continued

Fsociety ransomware

Mr. Robot television series is a breath of fresh air in the world where telecommunication medium streams mostly romantic comedies and twisted vampire battles. This time, the creators of this show have centralized the plot around a brilliant-minded Elliot Alderson, tempted to put his programming skills for evil purposes. A group called Fsociety attempts to … Continued

Game Card Ransomware

Game Card Ransomware is one more Ukash virus that blocks random computer systems and displays a fake alert claiming that you have been doing some illegal activities related to copyrighted products. This time it blames you for illegally downloading some music tracks. Game Card Ransomware gets inside the system through various security holes while visiting … Continued

GandCrab 2 Ransomware

GandCrab 2 ransomware is a second version of the GandCrab crypto-malware. If you are following the news in the cyber world, you might have heard that Romanian Police, together with BitDefender and Interpol have managed to get access to the C&C servers of GandCrab virus. After that, BitDefender released a free decryption software, allowing victims … Continued

GandCrab 3 Ransomware

The famous GandCrab virus has recently (as of late April, 2018) released a 3rd version of its crypto-malware called GandCrab 3.  This new GandCrab iteration still uses the same .CRAB extension to encrypt victim’s data and can be detected in a system as PUP.AD.GANDCRAB.3. To know more about this ransomware you can read our articles … Continued

GandCrab 5.2 ransomware

This past week brought some memorable moments in regards to the infamous GandCrab ransomware. As you may know, this cryptovirus has been bothering the cyber world for a while now, despite united malware experts’ efforts. Up until recently, users were able to decrypt locked files up to GandCrab v5, but on February 19th, 2019 hardworking virtual security … Continued

GandCrab ransomware

GandCrab crypto-virus is one of the newest ransomware infections and security researchers indicate it as a curious case. This malware has some intriguing features that had never been detected in viruses of this category. A campaign called Seamless is a malvertising chain, pushing the RIG exploit kit and frequently delivering Ramnit Trojan. Alcatraz ransomware was … Continued

Gate ([email protected]) Virus

Gate is an iteration of the Dharma/Crysis ransomware that’s been around for a few years now. Gate is relatively new, though, and infects machines that are in some way vulnerable to th edistribution techniques that it uses. Gate is recognized by the “.gate” extension that is appended to the locked files. All the files that … Continued

Gedantar ransomware

Gedantar ransomware is called this way because the main malicious file of this virus is called “gedantar.exe”. Since it is ransomware infection, results of it infecting yuor computer can be devastating – it will lock your files and then ask for the ransom to be paid. Cyber criminals behind this infection want you to pay … Continued

Gendermerie Nationale virus

Gendarmerie Nationale is a ransmoware that attacks French computer systems. It is spread on the Internet through exploit pages. Once infected, you will receive a message in French claiming that you have done some illegal actions concerning watching and distributing some pornographic content, etc. Here’s how a part of the message looks like: Attention! Votre … Continued

Gerosan Virus

Gerosan is one of many viruses which restrict people’s access to their files by corrupting the data on their disk (or rather, encrypting it and hiding the decryption key). Gerosan belongs to the STOP/DJVU ransomware family and can be recognized by how it appends “.gerosan” to the name of each encrypted file. A Gerosan infection … Continued

Gesd Ransomware

Gesd – new Djvu-type ransomware – has been noticed by a ransomware researcher. Gesd is a malicious program that locks files on the infected computer. The creators of the ransomware demand money to undo the damage. Whether the files can be fixed for free depends on each victim’s situation, but there is a possibility. Symptoms of … Continued

[email protected] Q1G Cryptovirus

Q1G is a new variant of Dharma ransomware. Ransomware is one of the most destructive types of malware. Generally, a cryptovirus corrupts nearly all the files on the system it infected using cryptography and so far, no free decrypter has been developed for this variant. Based on Dharma, Q1G is no less dangerous than the … Continued

GetCrypt Virus

GetCrypt is a file-locking ransomware virus. This type of virus gets into a computer (or a network), finds and encrypts all the files that aren’t necessary for the operating system, then demands money for returning them to normal. Usually, a ransomware attack is very devastating for those who do not have recent backups of their … Continued

Ghost ransomware

Ghost ransomware might sound like a threat which would try its best to hide from the victim and stay invisible while still causing harm like typical ghosts, yet it’s not like that at all because the Ghost, that we are talking about, is a cryptovirus. In the malware world, such ransomware infections are inseparable from … Continued

GIBON virus

GIBON virus is categorised as a ransomware – a pretty dangerous one. It was discovered by a famous cyber security researcher Matthew Mesa, this virus is still a bit of a mystery . The origin of the virus is unknown, but it is clear that this ransomware can cause detrimental damage. Gibon ransomware is distributed … Continued

GILLETTE Ransomware

GILLETTE ransomware is a new crypto virus that can completely take over your system – it is capable of encrypting all of your personal files and blocking your access to them until you pay the ransom. That is why it is called ransomware. Cyber criminals that created this infection claim that there is no other … Continued

Gingerbread Ransomware

Gingerbread ransomware was discovered the other week, that is, around the 7th to 13th of November, 2016, by a cyber tracker JAMESWT from MalwareHunterTeam. This crypto-locker is written in Delphi programming language and it is aimed at the Russian-speaking users. The title of the file encrypting program comes from the tale of the Gingerbread Man, … Continued

Globe Imposter ransomware virus

Globe Imposter ransomware virus variants continue to splurge and copy the older superior version of Globe infection. The first thing that shows resemblance is the ransom note which is designed in a similar style. Nevertheless, different email addresses that are left as the contact information imply that some variants are not generated by the same … Continued

Globe Ransomware

The ransomware, calling itself Globe, is another ransomware of the month, which, like the one named PokemonGo, is developed by some weirdo or weirdos dwelling in the cave of popular culture like some gypsies dwelling in the caves they call homes. This particular ransomware virus is based on the popular Purge series, telling an apocalyptic … Continued

Globeimposter 2.0 Ransomware

Globe ransomware is still alive, only in different form and name.  We have experienced a comeback of Globe ransomware with Globe Imposter and even though this infection was defeated really fast as cyber security researchers from  released a decryptor dedicated to Globe Imposter. Sadly, this ransomware infection is back and now it is called Globeimposter … Continued

GNL Locker Ransomware

GNL Locker is a ransomware trojan bearing resemblance to such viruses as Locky, CryptoWall, TeslaCrypt, CryptoHasYou, just to name a few among others. In ‘‘GNL’’ acronym ‘‘G’’ stands for German, ‘‘N’’ – for Netherlands and ‘‘L’’ – for locker. This selection of countries is not accidental – the virus checks the IP address and targets … Continued

Godes Ransomware

The Godes file-locker is a virus derived from STOP/DJVU ransomware. It’s new and currently active, infecting people’s computers and locking their files, marking them with the “.godes” extension. The extortionists responsible for Godes try to trick people to contact them and pay money instead of removing the virus and exploring alternative file-restoring options with an … Continued

Godra ransomware

Godra ransomware virus suddenly surfaced at the end of December (2017), not too long after the discovery of File Spider virus. The main attack appears to have been primarily focused on people from Croatia. Croatian Financial Agency (FINA) even published a warning message on their website. The message informed them that a series of deceptive … Continued

Godsomware (God Crypt v1.0) ransomware

Just a few days ago on October 6th, 2018, MalwareHunterTeam, as usual, reported on their Twitter about a new joke ransomware called God Crypt v1.0 or Godsomware. This cryptovirus seems to be not as malicious as everyone would expect and does not even encrypt the files, but what it can sure do is annoy and scare … Continued

GOG ransomware

We always try to prep our visitors for the unexpected content that might be introduced to them via websites they choose to visit everyday. GOG crypto-ransomware is a yet another threat in the cyber world, dedicated to encryption of files. It uses a complicated cryptography to reassure that affected files would no longer run and … Continued

Golden Axe Virus

Golden Axe is a computer virus that can encrypt (lock) files stored on a system running Windows operating system. It is categorized as cryptovirus or simply ransomware. Why? Because there is the option to get your files back directly from cyber criminals by paying them the ransom. Luckily, there are other, better options as well. … Continued

GoldenEye Ransomware

Petya and Mischa are not two names of your Russian fellows: we are referring to a couple of crypto-ransomware viruses that no longer pose a threat. Security researchers investigated these two cases thoroughly, gathered enough evidences and finally managed to produce functional decryption for these two infections. Nevertheless, the creators of latter viruses have no … Continued

Goliath Ransomware

Goliath ransomware is a new ransomware trojan that is supposedly to be purchased on TOR website, an illegal site selling ransomwares and USB keys for their decryption. The good news is that there has not been a case of Goliath attack reported yet. However, we cannot let our guards down and deny the possibility of … Continued

Gollum Ransomware

Gollum Ransomware – extremely dangerous infection that is capable of encrypting personal files so the user can’t use them any longer. It is not that different from other ransomware infections, yet that doesn’t mean it is not dangerous. In fact, ransomware viruses are probably the most dangerous type of malware – it can cost you … Continued

Gomasom

Gomasom also known as Google Mail ransom is a new ransomware. The name Google Mail ransom is related to the encrypted files names – they all have gmail email addresses on them. Gomasom ransomware is not so similar to all other ransomware of this type. That’s because Gomasom can encrypt not only your files, but executables as well, so you … Continued

.good extension virus

.good extension virus is a ransomware infection and it is not good at all. It can get into your system, encrypt all personal files that are stored there and then ask for a ransom to be paid in order to provide you with decryptor. They encrypt data using strong encryption algorithm and as a result, … Continued

GoodMorning Ransomware

There is a malware infection called GoodMorning. GoodMorning is file-locking ransomware: it encrypts files, changes their names, then asks the victims to pay money if they want to get their files back. As GoodMorning is still pretty new, there is not much known about it. At the time of writing, there’s no free decryptor or another easy … Continued

Gotcha Ransomware

Did your files (everything — videos, pictures, documents, archives) disappear, only for a multitude of unfamiliar, unopenable files with the “.gotcha” extension to show up in your folders? [file name].gotcha Did you find a text file named “!GOTCHA!.txt”, telling you to immediately contact someone who, for a small fee, will get back your files? Gotcha … Continued

Grandeur Ransomware

Grandeur is a malicious program that encrypts data and asks for money to fix it. When Grandeur infects a computer, it encrypts files and changes their names, ending them with file type extension “grandeur”. Encrypted files can’t be opened and read and there is no easy way to fix them. There’s no way to decrypt … Continued

Green Dot Moneypak Virus

Green Dot Moneypak Virus is an aggressive ransomware that blocks an infected computer completely. It uses the same psychological techniques as FBI Moneypak Virus to convince people into paying the fine. If you see your PC screen locked and a message from the Federal Bureau of Investigation informing that you breached federal laws, do not … Continued

Greystars ransomware virus

Greystars can be described as a typical ransomware infection, if not for its’ distribution method, which is both more complicated and more dangerous. It’s a common trait for a ransomware infection because the main target of Greystars is to encrypt files using a strong cryptography and then ask for a ransom to be paid in … Continued

Grod File-Locking Virus

Grod ransomware is very similar to Peet, Lokf, Mosk, and other Djvu-type ransomware. It uses cryptography to lock up people’s files and only releases them when the victim pays the ransom of $480. This extortion scheme mostly targets people who use torrent sites and don’t check the programs they downloaded with an antivirus tool. Although there … Continued

Grupo de Delitos Telemáticos Virus

Grupo de Delitos Telemáticos Virus is an infection that causes paralysis of your all operating system leaving it unresponsive to almost any commands. As many other threats of this type, called ransomware, it locks computer screen with a message having Interpol, Europol and Direccion General de la Policia y de la Guardia Civil name and … Continued

Gruxer ransomware

Gruxer ransomware virus was determined to have 3 main stages. During one of them, sample tries to connect to Uktusen.com website and after analyzing it with VirusTotal, we were informed that this site was clean. However, after trying to access the domain, we realized that it does not exist. Holy.exe file is the malicious payload … Continued

Gryphon ransomware virus

Gryphon ransomware virus has been nailed down to be a newer version of BTCWare infection and not Amnesia (this was the first assumption that security researchers had mistakenly made). Despite belonging to the BTCWare (1) family of infections that include such samples like Master virus, we have to observe couple of distinguishing factors that individuate … Continued

Gusau Ransomware

One of the most dangerous types of computer infections is file-encrypting ransomware. Unlike screen-lockers, file-lockers, specifically ones that belong to the STOP/Djvu family, can harm a system by corrupting valuable files, editing settings, crippling the antivirus program, and even installing a password-stealing trojan. Gusau is a file-encrypting virus and one of the newest versions of STOP/Djvu … Continued

Recent Posts

Security Guides

Recent Comments