Difference between revisions of "CTB-Locker"

From Botnets.fr
Jump to navigation Jump to search
 
 
(9 intermediate revisions by the same user not shown)
Line 1: Line 1:
{{Botnet
{{Botnet
|Introduction=
|Introduction=CTB for "Curve-Tor-Bitcoin"
|Fonctionnalités=* [[feature::Encrypt files]] ([[feature::ECDH]])
|Alias=Critroni,
* [[feature::Lock computer]]
|Target=Microsoft Windows
* [[feature::Bitcoin payment]]
|Vector=Angler, Spam,
|CCProtocol=Tor,
|Feature=Bitcoin payment, Elliptic curve encryption, Encrypt files, Lock system, Bitcoin payment, Diffie-Hellman,
|BeginYear=2014
|Group=Ransomware
|Illustrations=(courtesy of [[Kafeine]])
|Illustrations=(courtesy of [[Kafeine]])
{{Illustrations associées}}
{{Illustrations associées}}
Line 9: Line 13:
|Infrastructure=
|Infrastructure=
|Commercialisation=* [[price::$3000]]
|Commercialisation=* [[price::$3000]]
|UserAgent=Unknown
|UserAgent2=
|UserAgent2=
|UserAgent3=
|UserAgent3=
Line 18: Line 21:
|Language3=
|Language3=
|Language4=
|Language4=
|CCProtocol=TOR
|CC2=
|CC2=
|CC3=
|CC3=
|Target=Microsoft Windows
|OS2=
|OS2=
|OS3=
|OS3=
|OS4=
|OS4=
|Status=Unknown
|BeginYear=2014
|EndYear=Unknown
|Group=Ransomware
|Groupe2=Cryptolocker
|Groupe2=Cryptolocker
|Alias=CTB-Locker
|Vendor1=
|Vendor1=
|Alias=Onion
|Vendor2=Kaspersky lab
|Vendor2=Kaspersky lab
|Alias=Critroni
|Vendor3=Microsoft
|Vendor3=Microsoft
|Alias=
|Vendor4=
|Vendor4=
|Alias=
|Vendor5=
|Vendor5=
|Alias=
|Vendor6=
|Vendor6=
|Alias=
|Vendor7=
|Vendor7=
|Alias=
|Vendor8=
|Vendor8=
|Alias=
|Vendor9=
|Vendor9=
|Alias=
|Vendor10=
|Vendor10=
|Vector=Angler
|Exploitkit2=
|Exploitkit2=
|Exploitkit3=
|Exploitkit3=

Latest revision as of 06:57, 15 August 2015

(Botnet) Link to the old Wiki page : [1] / Google search: [2]

CTB-Locker
Alias Critroni
Group Ransomware
Parent
Sibling
Family
Relations Variants:

Sibling of:
Parent of:
Distribution of:
Campaigns:

Target Microsoft Windows
Origin
Distribution vector Angler, Spam
UserAgent
CCProtocol Tor (Distributed-centralized)
Activity 2014 /
Status
Language
Programming language
Operation/Working group

Introduction

CTB for "Curve-Tor-Bitcoin"

Features


Associated images

Checksums / AV databases

Publications

 AuthorEditorYear
"Crypto Ransomware" CTB-Locker (Critroni.A) on the riseKafeineKafeine2014
CTB-Locker is back: the web server editionIdo NaorKaspersky Securelist2016
Critroni crypto ransomware seen using Tor for command and controlDennis FisherKaspersky lab2014
Kaspersky security bulletin 2015. Overall statistics for 2015Maria Garnaeva
Jornt van der Wiel
Denis Makrushin
Anton Ivanov
Yury Namestnikov		Kaspersky Securelist2015
Le dropper de CTB-LockerChristophe Rieunier2015
New crypto-ransomware emerge in the wildEduardo Altares IITrend Micro2014
Your files are encrypted with a “Windows 10 Upgrade”TALOSCISCO2015
Retrieved from "https://www.botnets.fr/index.php?title=CTB-Locker&oldid=12646"