Posts tagged CryptXXX
CryptXXX

CryptXXX targets Windows OS and is distributed through the Bedep Trojan spread via the Angler Exploit Kit. It is shipped as a dynamic-link library (DLL) file dropped by the Bedep Trojan into folders contained within AppData\Local\Temp. The execution of the DLL is randomly and deliberately delayed to make it more difficult for the victim to make the connection between the infection and the attack vector, specifically the compromised website distributing the infection.

Read More
CryptMix

CryptMix, a combination of CryptXXX and CryptoWall, targets Windows OS and is distributed via phishing emails and drive-by downloads. Once installed, it proceeds to encrypt 862 file types and change their extension to .CODE. CryptMix initially demands a ransom payment of 5 Bitcoins but doubles the amount if the ransom is not paid within a set time period.

Read More