Merge pull request #516 from rmkml/master

add MedusaLocker ransomware
This commit is contained in:
Alexandre Dulaunoy 2020-02-23 16:06:45 +01:00 committed by GitHub
commit ee63756cc5
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -18797,7 +18797,19 @@
}, },
"uuid": "721e9af0-8a60-4b9e-9137-c23e86d75722", "uuid": "721e9af0-8a60-4b9e-9137-c23e86d75722",
"value": "Zyklon" "value": "Zyklon"
},
{
"description": "A Windows ransomware that will run certain tasks to prepare the target system for the encryption of files. MedusaLocker avoids executable files, probably to avoid rendering the targeted system unusable for paying the ransom. It uses a combination of AES and RSA-2048, and reportedly appends extensions such as .encrypted, .bomber, .boroff, .breakingbad, .locker16, .newlock, .nlocker, and .skynet.",
"meta": {
"refs": [
"https://malpedia.caad.fkie.fraunhofer.de/details/win.medusalocker"
],
"synonyms": [],
"type": []
},
"uuid": "237a1c2e-fb14-583d-ab2c-71f10a52ec06",
"value": "MedusaLocker"
} }
], ],
"version": 2560 "version": 2561
} }