add Uiwik ransomware

2024-11-22 23:07:19 +00:00 · 2017-05-18 13:59:47 +02:00 · 2017-05-18 13:59:47 +02:00 · 7fee4f3a1b
commit 7fee4f3a1b
parent 3b93a773e5
1 changed files with 17 additions and 1 deletions
--- a/clusters/ransomware.json
+++ b/clusters/ransomware.json
@ -1239,7 +1239,7 @@
          "IMPORTANTE_LEER.html",
          "RECUPERAR_ARCHIVOS.html",
          "https://3.bp.blogspot.com/-KE6dziEK4To/WHnvPzKOs7I/AAAAAAAADHI/KPBjmO9iChgAa12-f1VOxF49Pv27-0XfQCLcB/s1600/note.jpg"
-        ],
+        ],Yamuraiha
        "encryption": "AES",
        "extensions": [
          ".locked"
@ -8465,6 +8465,22 @@
        ]
      }
    }
+    {
+      "value": "Uiwix Ransomware",
+      "description": "Using EternalBlue SMB Exploit To Infect Victims",
+      "meta": {
+        "extensions": [
+          "._[10_digit_victim_id].UIWIX"
+        ],
+        "encryption": "may be a mixture of AES and RC4.",
+        "ransomnotes": [
+          "_DECODE_FILES.txt"
+        ],
+        "refs": [
+          "https://www.bleepingcomputer.com/news/security/uiwix-ransomware-using-eternalblue-smb-exploit-to-infect-victims/"
+        ]
+      }
+    }
  ],
  "source": "Various",
  "uuid": "10cf658b-5d32-4c4b-bb32-61760a640372",