RobbinHood is a ransomware variant targeting entire networks and then encrypting as many computers as they can once they gain access. Then they request a certain amount of bitcoins to either decrypt a single computer or a larger amount to decrypt the entire network. One interesting note is they stress that the victim’s privacy is important to them and they will not disclose any victims who have paid.

Technical Details and Reporting

  • Bleeping Computer provides details of this ransomware variant here.

4/26/2019: Threat actors are distributing RobbinHood through hacked remote desktop services or other Trojans.

robbinhood ransom-note-partial.jpg