Payms is a ransomware-type virus based on the source code of another ransomware infection called Jigsaw. Developers of Jigsaw sell the source code in dark web and, thus, new variants of this ransomware are common. Once infiltrated, Payms employs an asymmetric algorithm to encrypt files stored in v
Yakes (Mobef) is ransomware-type malware similar to Salam!. After infiltrating the system, Yakes encrypts various types of files (for example, .doc, .ppt, .pdf, etc.) stored on victims' computers. Some variants of this ransomware extend the names of encrypted files with the Lokmann.Key993, .KEYH0L
Vault is ransomware-type malware designed to encrypt various files stored on infected computers. During encryption, this ransomware adds a ".vault" or ".xort" extension to each encrypted file and, therefore, it is easy to determine which files are affected. All files are encrypted using the RSA a
7ev3n ransomware stealthily infiltrates systems via malicious e-mail attachments, P2P networks, and fake software updates. After system infiltration, 7ev3n encrypts files stored on computers and adds the .r5a (or .r4a) extension to compromised files. Once files are successfully encrypted, a pop-up
CryptXXX is ransomware-type malware distributed using the Angler Exploit Kit. Following infiltration, CryptXXX encrypts various files stored on local and mounted drives using RSA4096 - an asymmetric encryption algorithm. Thus, public (to encrypt) and private (to decrypt) keys are generated during
GamesCake is a deceptive application identical to GamingTreasure, ArcadeTropics, GamesLagoon, and a number of other bogus programs. All (including GamesCake) offer functionality to play various Flash games, however, these false claims are merely attempts to trick users into believing that this app
searchswapper.com is a fake Internet search engine claiming to enhance the web browsing experience by generating the most relevant search results. Judging by appearance alone, searchswapper.com may seem very similar to Google, Yahoo, Bing, and other legitimate Internet search engines. Therefore,
Aga is another ransomware-type virus that targets Russian users and encrypts files (.doc, .jpg, ppt, .pdf, etc). During encryption, this ransomware adds the .aga extension to the name of each encrypted file (for example, a file named "sample.jpg" is renamed to "sample.jpg.aga"). A text file named
GamesCrystal is a potentially unwanted program (PUP) claiming to allow users to play various Flash games. These fake promises often trick users into believing that GamesCrystal is a legitimate app, however, that this PUP usually infiltrates systems without users’ permission. Furthermore, GamesCry
JuicyLemon is a ransomware-type virus that infiltrates the system and then encrypts stored files. During encryption, this virus extends the name of each file with the ".id-[victim’s ID]_email1_support_@_juicylemon.biz_email2_provectus_@_protenmail.com_BitMessage_BM-NBRCUPTenKgYbLVCAfeVUHVsHFK6Ue2