Difference between revisions of "CTB-Locker"

From Botnets.fr
Jump to navigation Jump to search
m (Text replacement - "=Unknown" to "=")
Line 4: Line 4:
|Target=Microsoft Windows
|Target=Microsoft Windows
|Vector=Angler, Spam,
|Vector=Angler, Spam,
|UserAgent=Unknown
|UserAgent=
|CCProtocol=Tor,
|CCProtocol=Tor,
|Feature=Bitcoin payment, Elliptic curve encryption,
|Feature=Bitcoin payment, Elliptic curve encryption,
|Status=Unknown
|Status=
|BeginYear=2014
|BeginYear=2014
|EndYear=Unknown
|EndYear=
|Group=Ransomware
|Group=Ransomware
|Fonctionnalités=* [[feature::Encrypt files]] ([[feature::ECDH]])
|Fonctionnalités=* [[feature::Encrypt files]] ([[feature::ECDH]])

Revision as of 15:48, 8 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

CTB-Locker
Alias Critroni
Group Ransomware
Parent
Sibling
Family
Relations Variants:

Sibling of:
Parent of:
Distribution of:
Campaigns:

Target Microsoft Windows
Origin
Distribution vector Angler, Spam
UserAgent
CCProtocol Tor (Distributed-centralized)
Activity 2014 /
Status
Language
Programming language
Operation/Working group

Introduction

CTB for "Curve-Tor-Bitcoin"

Features


Associated images

Checksums / AV databases

Publications

 AuthorEditorYear
"Crypto Ransomware" CTB-Locker (Critroni.A) on the riseKafeineKafeine2014
CTB-Locker is back: the web server editionIdo NaorKaspersky Securelist2016
Critroni crypto ransomware seen using Tor for command and controlDennis FisherKaspersky lab2014
Kaspersky security bulletin 2015. Overall statistics for 2015Maria Garnaeva
Jornt van der Wiel
Denis Makrushin
Anton Ivanov
Yury Namestnikov		Kaspersky Securelist2015
Le dropper de CTB-LockerChristophe Rieunier2015
New crypto-ransomware emerge in the wildEduardo Altares IITrend Micro2014
Your files are encrypted with a “Windows 10 Upgrade”TALOSCISCO2015
Retrieved from "https://www.botnets.fr/index.php?title=CTB-Locker&oldid=12406"