Entries by FM Team

Ranstop blocks Scarab ransomware

Test subject – Scarab ransomware Scarab ransomware family has been very active in the past few weeks. More than five variants were discovered just last week, dominating the ransomware market, and it looks like its developers continue to release new versions. Today’s video will cover the “bomber” variant, named after the extension it appends to […]

Ranstop blocks CryBrazil ransomware

Test subject – CryBrazil ransomware Another HiddenTear based ransomware got released these days, called CryBrazil. The opensource platform initially created for educational purposes only was quickly adopted by malware developers who continue to develop and release new variants. Some of them are also decryptable, but most of them are not, making HiddenTear infections quite dangerous. […]

Ranstop blocks RedEye ransomware

Test subject – RedEye ransomware RedEye, the ransomware of choice for this article and video, was created by the developers of the infamous Annabelle (also Jigsaw, possibly a few others) and has only one purpose: to bring terror and destruction among its victims. There’s no way around, once your PC is infected, you will lose […]

Ranstop blocks GandCrab v3 ransomware

Test subject – GandCrab v3 ransomware We already covered the first version of GandCrab, but since then, two new versions were released. The developers promised to come back after their first command & control servers were seized, and they also managed to add new features to their malicious creation. Some things didn’t change though, the […]

TEMASOFT appoints CloudLand as distributor for Benelux

Benthuizen, Netherlands – May 14, 2018 – as of today, software distributor CloudLand distributes the products of Temasoft to Dutch and Belgian IT resellers and service providers. Temasoft is a software company that focuses on the development of security and infrastructure products. CloudLand is going to distribute the two main products of Temasoft: Ranstop, an […]

Ranstop blocks XiaoBa ransomware

Test subject – Xiaoba ransomware Xiaoba has evolved from a simple ransomware to a file destroying coinminer. This is mainly due to some bugs in the code, but now is back with yet another version, which only encrypts files and demands a ransom to get them back, as any other ransomware does. Discovered in October […]

Ranstop blocks Iron ransomware

Test subject –Iron ransomware Iron is an unsual combination of three popular ransomware variants: Maktub, DMA Locker, and Satan. It borrows elements from each of these, both operational and visual, making it difficult to classify. Original Maktub allowed the free recovery of one encrypted file, Iron, however, doesn’t. It encrypts 374 file extensions, including some […]

Ranstop blocks Bansomqare ransomware

Test subject Bansomqare ransomware “Bansomqare Wanna” is relatively new ransomware with some particularities, even though it has partly similar code with the infamous WannaCry. It is distributed using email campaigns and infected documents, and it disguises itself as the popular mobile app WhatsApp to trick the user into running the executable. Bansomqare ransomware test facts […]

Ranstop blocks ScammerLocker ransomware

Test subject ScammerLocker (Jodis) ransomware Based on the well known and publicly available HiddenTear ransomware code, ScammerLocker is relatively simple but highly efficient ransomware. HiddenTear is continuously improved, and because it is opensource, we should expect new variants to appear. Other variants of HiddenTear include Oxar, May, Krypton, MoWare, Franzi or Ultimo.  Distribution channels differ […]

Ranstop blocks Princess Locker v2 ransomware

Test subject – Princess Locker v2 ransomware Princess Locker represents a relatively known type of ransomware which seems to have evolved from the same family as Alma Locker. It was first discovered in 2016 and a second version was released relatively recently, and it is very active at present. Princess Locker ransomware test facts The […]