Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Many newest adds just RansomwareNames NOT *.extensions #94

Open
gizmo21 opened this issue May 20, 2020 · 0 comments
Open

Many newest adds just RansomwareNames NOT *.extensions #94

gizmo21 opened this issue May 20, 2020 · 0 comments

Comments

@gizmo21
Copy link

gizmo21 commented May 20, 2020
edited

Could it be possible that you did not really check the newest filters on https://fsrm.experiant.ca/#rawlist (perhaps @JKM-ITP who helped on experiant.ca issue the other time)

Those just seem

  1. to be the clearnames for Ransomware Variants with added * .< Ransomware-clearname > , but not their real extensions.
  2. kind of old ones 2016-2018

This seems to mostly apply to additions between * .Zipper and * .0kilobypt and those also seem to be sorted backward alphabetically and perhaps added in a one time submission.
But there are several, not alphabetically sorted in ones, like "*.mzlq" which are valid new filters.

Please verify and please comment if I am wrong.
Here is the questable list with some marked VALID ones that I could verify:

*.Zipper
*.Zekwacrypt
*.ZeroFucks
*.Zenis
*.ZinoCrypt
*.ZimbraCryptor
*.ZeroRansom
*.ZipLocker
*.Zoldon
*.ZQ
*.ZariqaCrypt
*.YouAreFucked
*.XYZWare
*.XCry
*.XTP
*.Wulfric
*.WonderCrypter
*.WinRarer
*.Winnix
*.WininiCrypt
*.WildFire
*.WhiteRose
*.WhatAFuck
*.Wesker
*.WannaSpam
*.WannaSmile
*.WannaPeace
*.WannaDie
.WannaCry
*.Waffle
*.Vurten
*.Vortex
*.VoidCrypt
*.VMola
*.VindowsLocker
*.ViACrypt
*.Venus
*.Venis
*.Vega
*.VaultCrypt
*.V8Locker
*.Uyari
*.UserFilesLocker
*.Useless
*.Unlock92
*.Unlock26
*.Unknown
*.UnblockUPC
*.Ungluk
*.UmbreCrypt
*.Ukash
*.UCCU
*.TurkStatik
*.TrumpLocker
*.TrueCrypter
*.Troldesh
*.Trojan.Encoder.6491
*.TowerWeb
*.TotalWipeOut
*.Torchwood
*.TheDarkEncryptor
*.TheDMR
*.TeslaWare
*.Teslarvng
*.TeslaCrypt
*.Termite
*.TellYouThePass
*.Telecrypt
*.Team XRat
*.T1Happy
*.SZFLocker
*.SystemCrypter
*.SyncCrypt
*.SynAck
*.SuperB
*.SunCrypt
*.Stupid
*.Striked
*.Storm
*.StorageCrypter
*.Stampado
*.SQ_
*.SpartCrypt
*.Spartacus
*.SoFucked
*.SNSLocker
*.Smrss32
*.SkyFile
*.Skull
*.SintaLocker
*.Simple_Encoder
*.SilentSpring
*.Sigma
*.Shujin
*.ShkolotaCrypt
*.ShivaGood
*.Shigo
*.ShellLocker
*.SFile
*.SerbRansom
*.Seon
*.ScareCrow
*.SatanCryptor
*.Sanctions
*.SamSam
*.Salsa
*.SADStory
*.Sadogo
*.SadComputer
*.SAD
*.Russian EDA2
*.Russenger
*.Ruby
*.RSAUtil
*.RSA2048Pro
*.RSA-NI
*.Roza
*.RotorCrypt
*.RoshaLock
*.Roga
*.REvil
*.RetMyData
*.RenLocker
*.RemindMe
*.Relock
*.Rektware
*.REKTLocker
*.RedBoot
*.RarVault
*.RaRansomware
*.RansomWarrior
*.RansomPlus
*.Ransomnix
*.RansomCuck
*.Rans0m
*.RanRan
*.Ranion
*.RandomLocker
*.Random6
*.Ragnar
*.Radiation
*.RackCrypt
*.RabbitFox
*.RAA-SEP
*.R980
*.QwertyCrypt
*.Quimera
*.QuakeWay
*.QP
*.qkG
*.PyLocky
*.PyL33T
*.PyCL
*.PwndLocker
*.PureLocker
*.PshCrypt
*.Protected
*.ProLock
*.Project57
*.Project34
*.PrincessLocker
*.Pr0tector
*.PPDDDP
*.PowerWare
*.PowerLocky
*.PopCornTime
*.PonyFinal
*.PoisonFang
*.Plague17
*.Pickles
*.PhoneNumber
*.Philadelphia
*.PhantomChina
*.PGPSnippet
*.PewCrypt
*.Petna
*.Pendor
*.PEC 2017
*.PClock
*.PaySafeGen
*.PayPalGenerator2019
*.Paymen45
*.Paradise
*.Ozoza
*.Ouroboros
*.Ordinypt
*.OpJerusalem
*.OpenToYou
*.OnyxLocker
*.Nyton
*.Nx
*.NullByte
*.Nuke
*.NSB
*.NotAHero
*.Nomikon
*.NMoreira
*.Nhtnwcuf
*.NextCry
*.NewHT
*.Netwalker
*.Netix
*.NETCrypton
*.Nemucod
*.NegozI
*.NCrypt
*.NanoLocker
*.n1n1n1
*.Mystic
*.MrDec
*.MoWare
*.MOTD
*.MorrisBatchCrypt
*.MoonCrypter
*.Montserrat
*.MongoLock
*.Mobef
*.MNS
*.Mischa
*.MireWare
*.MirCop
*.Minotaur
*.MindSystem
*.Meteoritan
*.Mespinoza
*.MegaLocker
*.Medusa
*.MCrypt2018
*.Maykolin
*.MauriGo
*.MarsJoke
*.MarraCrypt
*.Marlboro
*.Marduk
*.Maoloa
.MalwareTech
*.Magniber
*.MafiaWare
*.MAFIA
*.MadBit
*.LowLevel04
*.LoveServer
*.Lost_Files
*.Lortok
*.LooCipher
*.LonleyCrypt
*.LongTermMemoryLoss
*.LockTaiwan
*.LockerGoga
*.LockedByte
*.Locked-In
*.LockCrypt
*.LockBox
*.Lock2017
*.LMAOxUS
*.LLTP
*.LittleFinger
*.LightningCrypt
*.LambdaLocker
*.Ladon
*.L33TAF
*.KryptoLocker
*.Kriptovor
*.Krider
*.KratosCrypt
*.Kozy.Jozy
*.Kolobo
*.KokoKrypt
*.Kirk
*.KillRabbit
*.KillerLocker
*.KEYHolder
*.KeyBTC
*.Kerkoporta
*.KeRanger
*.KCW
*.KawaiiLocker
*.Kasiski
*.Karo
*.Karmen
*.Karma
*.Kaenlupuf
*.JungleSec
*.JuicyLemon
*.JosepCrypt
*.JoeGo
*.JobCrypter
*.JNEC.a
*.Jigsaw
*.Jemd
*.JeepersCrypt
*.JapanLocker
*.Jager
*.Jack.Pot
*.JabaCrypter
*.Ishtar
*.Iron
*.iRansom
*.InsaneCrypt
*.InfoDot
*.InfinityLock
*.InfiniteTear
*.InducVirus
*.Ims00ry
*.ILElection2020
*.IFN643
*.IEncrypt
*.HydraCrypt
*.Hydra
*.Hucky
*.HPE iLO
*.HolyCrypt
*.HollyCrypt
*.HKCrypt
*.HildaCrypt
*.HiddenTear
*.Heropoint
*.HelpDCFile
*.Help50
*.Hells
*.Heimdall
*.HDDCryptor
*.hc7
*.hc6
*.Halloware
*.Hakbit
*.HadesLocker
*.GX40
*.GusCrypter
*.GPGQwerty
*.GPCode
*.GPAA
*.Gorgon
*.GoRansom
*.Gomasom
*.GoldenEye
*.Golden Axe
*.GoGoogle
*.Globe3
*.GlobeImposter
*.Gibon
*.Gibberish
*.GhostHammer
*.GhostCrypt
*.GetCrypt
*.GermanWiper
*.Gerber
*.GC47
*.GandCrab2
*.GandCrab
*.Galacti-Crypter
*.FuxSocy
*.FunFact
*.FuckSociety
*.FS0ciety
*.FrozrLock
*.FreeMe
*.FLKR
*.Flatcher3
*.FindZip
*.FilesLocker
*.Fenrir
*.FenixLocker
*.FCT
*.FCP
*.Fadesoft
*.Fabiansomware
*.Extractor
*.Extortion Scam
*.Exocrypt XTC
*.ExecutionerPlus
.Everbe
*.Eternal
*.Estemani
*.Erica
*.Erebus
*.EnkripsiPC
*.Enjey Crypter
*.Encryptor RaaS
*.EncryptoJJS
*.EncryptedBatch
*.Enc1
*.El Polocker
*.EggLocker
*.EduCrypt
*.EdgeLocker
.ECLR
*.eCh0raix
*.eBayWall
*.DynA-Crypt
*.DVPN
*.DryCry
*.DriedSister
*.DoubleLocker
*.DoNotChange
*.Done
*.DoggeWiper
.DMA Locker
*.District
*.Dishwasher
*.DirtyDecrypt
*.DilmaLocker
*.Digisom
*.DeriaLock
*.Defray777
*.Defray
*.DEDCryptor
*.DecYourData
*.DecryptIomega
*.DeathRansom
*.DeathNote
*.DeathHiddenTear v2
*.DeathHiddenTear
*.Deadly
*.DCry 2.0
*.Dcrtr
*.DavesSmith
*.DataKeeper
*.DarkoderCryptor
*.Dablio
*.CXK-NMSL
*.CTB-Locker
*.CTB-Faker
*.CSP Ransomware
*.Crystal
*.CryPy
*.CryptXXX 4.0
*.CryptXXX 3.0
*.CryptXXX 2.0
*.CryptXXX
*.CryptoWire
*.CryptoWall 4.0
*.CryptoWall 3.0
*.CryptoWall 2.0
*.CryptoViki
*.CryptoTorLocker
*.CryptoShocker
*.CryptoRoger
*.CryptorBit
*.CryptoPokemon
*.CryptoPatronum
*.CryptoMix Wallet
*.CryptoMix Revenge
*.CryptoMix
*.CryptoLuck
*.CryptoLocky
*.CryptoLockerEU
*.CryptoLocker3
*.CryptoJacky
*.CryptoHitman
*.CryptoHasYou
*.CryptoGod
*.CryptoFortress
*.CryptoFinancial
*.CryptoDevil
*.CryptoDefense
*.CryptInfinite
*.CryptFuck
*.CryptConsole3
*.CryptConsole
*.Crypt0r
*.Crypt0L0cker
*.Crypt0
*.Crypren
*.CrypMic
*.CryLocker
*.CryFile
*.Cryakl
*.Cripton7zp
*.CreamPie
*.CradleCore
*.Cr1ptT0r
*.Cossy
*.CorruptCrypt
*.CoronaVirus
*.Comrade Circle
*.Clouded
*.CoinVault
*.Coin Locker
*.CockBlocker
*.CmdRansomware
*.ClicoCrypter
*.ChineseRarypt
*.ChinaYunLong
*.Chimera
*.ChernoLocker
*.CerberTear
.Cancer
.id[-].[decphob@tuta.io].eking THIS ONE IS A VALID NEW FILTER
*.DoppelPaymer THIS ONE IS A VALID NEW FILTER
*.Bucbi
*.Bubble
*.BTCamant
*.Brazilian Ransomware
*.Booyah
*.BoooamCrypt
*.Blue Blackmail
*.Blooper
*.BlockFile12
*.Blind 2
*.Blackout
*.BlackKingdom
*.BlackHeart
*.Black Shades
*.Black Feather
*.BKRansomware
*.Bitshifter
*.BitPyLock
*.Bitpaymer
*.BitCryptor
*.BitCrypt 2.0
*.BitCrypt
*.Bisquilla
*.BigBobRoss
*.BetaSup
*.BB Ransomware
*.Basilisque Locker
*.Bart v2.0
*.BandarChor
*.BadRabbit
*.BadEncript
*.BadBlock
.restoreserver THIS ONE IS A VALID NEW FILTER
*.g8R4rqWIp9 THIS ONE IS A VALID NEW FILTER
*.C4H THIS ONE IS A VALID NEW FILTER
*.cashdashsentme@protonmail.com THIS ONE IS A VALID NEW FILTER
*.cov19 THIS ONE IS A VALID NEW FILTER
*.rbs THIS ONE IS A VALID NEW FILTER
*.C1H THIS ONE IS A VALID NEW FILTER
*.paradox THIS ONE IS A VALID NEW FILTER
*.qensvlcbymk THIS ONE IS A VALID NEW FILTER
*.6be31 THIS ONE IS A VALID NEW FILTER
*.koti THIS ONE IS A VALID NEW FILTER
*.B2DR
*.aZaZeL
*.AxCrypter
*.AWT
*.Avest
*.AVCrypt
*.AutoWannaCryV2
*.AutoLocky
*.Atchbo
*.Ataware
*.ASN1 Encoder
*.Arsium
*.ArmaLocky
*.Argus
*.AresCrypt
*.ApolloLocker
*.ApocalypseVM
*.Apocalypse (New Variant)
*.Apocalypse
*.Anubis
*.AnteFrigus
*.Annabelle 2.1
*.AngryDuck
*.Anatova
*.Amnesia2
*.Alpha
*.Alma Locker
*.Alfa
*.mzlq THIS ONE IS A VALID NEW FILTER
*.zeronine THIS ONE IS A VALID NEW FILTER
*.lock2bits THIS ONE IS A VALID NEW FILTER
*.kupidon THIS ONE IS A VALID NEW FILTER
*.Lion THIS ONE IS A VALID NEW FILTER
*.Al-Namrood
*.Afrodita
*.AES256-06
*.AES-Matrix
*.AES_KEY_GEN_ASSIST
*.AdamLocker
*.ACCDFISA v2.0
*.ABCLocker
*.7ev3n
*.HaCk THIS ONE IS A VALID NEW FILTER
*.24H Ransomware
*.4rw5w
*.0kilobypt
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gizmo21