Jump to content

ID Ransomware: ransom note 2 identify ransomware that has encrypted your data


Batu69

Recommended Posts

Capture.png

 

  • Which ransomwares are detected?

    This service currently detects 144 different ransomwares. Here is a complete, dynamic list of what is currently detected:

    777, 7ev3n, 7h9r, 8lock8, Alfa, Alpha, AMBA, Apocalypse, Apocalypse (Unavailable), ApocalypseVM, AutoLocky, AxCrypter, BadBlock, Bandarchor, BankAccountSummary, Bart, BitCryptor, BitMessage, BitStak, Black Shades, Blocatto, Booyah, Brazilian Ransomware, Bucbi, BuyUnlockCode, Cerber, Chimera, Coin Locker, CoinVault, Coverton, CryFile, CrypMic, Crypren, Crypt0L0cker, Crypt38, CryptoDefense, CryptoFinancial, CryptoFortress, CryptoHasYou, CryptoHitman, CryptoJoker, CryptoMix, CryptorBit, CryptoRoger, CryptoShocker, CryptoTorLocker, CryptoWall 2.0, CryptoWall 3.0, CryptoWall 4.0, CryptXXX, CryptXXX 2.0, CryptXXX 3.0, CryptXXX 4.0, CrySiS, CTB-Faker, CTB-Locker, DEDCryptor, DirtyDecrypt, DMA Locker, DMA Locker 3.0, DMA Locker 4.0, ECLR Ransomware, EduCrypt, El Polocker, Encryptor RaaS, Enigma, GhostCrypt, Gomasom, Herbst, Hi Buddy!, HolyCrypt, HydraCrypt, Jigsaw, JobCrypter, JuicyLemon, KeRanger, KEYHolder, KimcilWare, Kozy.Jozy, KratosCrypt, Kriptovor, KryptoLocker, LeChiffre, Locky, Lortok, Magic, Maktub Locker, MirCop, MireWare, Mischa, Mobef, NanoLocker, NegozI, Nemucod, Nemucod-7z, ODCODC, OMG! Ransomcrypt, PadCrypt, PayForNature, PClock, PizzaCrypts, PowerLocky, PowerWare, Protected Ransomware, RAA-SEP, Radamant, Radamant v2.1, RemindMe, Rokku, Russian EDA2, SamSam, Sanction, Satana, SecureCryptor, Shujin, SNSLocker, Sport, SuperCrypt, Surprise, SZFLocker, TeslaCrypt 0.x, TeslaCrypt 2.x, TeslaCrypt 3.0, TeslaCrypt 4.0, TowerWeb, ToxCrypt, Troldesh, TrueCrypter, UCCU, UltraDecrypter, UmbreCrypt, Unlock92, Unlock92 2.0, Unnamed RAR Encryptor, VaultCrypt, Vipasana, WildFire Locker, WonderCrypter, Xorist, Xort, XRTN, zCrypt, ZimbraCryptor, Zyklon
  • Can you decrypt my data?

    No. This service is strictly for identifying what ransomware may have encrypted your files. It will attempt to point you in the right direction, and let you know if there is a known way of decrypting your files. Otherwise, there is no automated recovery attempts, as each case is different.

  • Is my data confidential?

    Any uploaded files are immediately analysed against the database of signatures. If results are found, they are immedietely deleted. If no results are found, the uploaded files may be shared with trusted malware analysts to help with future detections, or identifying a new ransomware.

    Data is uploaded to the server over SSL, meaning the connection can not be intercepted by a third-party.

    With that said, I cannot guarantee files are kept 100% confidential. The data is temporarily stored on a shared host, and I am not responsible for anything done otherwise with this data.

  • What if I have multiple results?

    Many ransomware have similar "signatures" in common, such as sharing the same extension on files. This makes it difficult to be 100% certain in some cases. Results are ordered by how many matches there are to prove it may be a particular ransomware.

  • Can I upload a sample of the malware or suspicious files?

    No. This service will only assess the ransom note, and encrypted files to determine the ransomware. For static or behavioural analysis, you can submit files to VirusTotal or Malwr.

 

ID Ransomware

Link to comment
Share on other sites


  • Replies 3
  • Views 1k
  • Created
  • Last Reply

 WinAntiRansom PLUS version 2016.7.502 ..... this program any good???

 

lots of smart  members here with great advice

Link to comment
Share on other sites


TheMountain

I don't if 'WinAntiRamsom PLUS' is "any good." You won't know if 'WinAntiRansom PLUS' is "any good" until you're directly dealing with ransomware. :unsure:

Link to comment
Share on other sites


37 minutes ago, TheMountain said:

I don't if 'WinAntiRamsom PLUS' is "any good." You won't know if 'WinAntiRansom PLUS' is "any good" until you're directly dealing with ransomware. :unsure:

hope I never have to really find out

Link to comment
Share on other sites


Archived

This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...