ID Ransomware

Sage 2.0

This ransomware has no known way of decrypting data at this time.

It is recommended to backup your encrypted files, and hope for a solution in the future.

Identified by

ransomnote_filename: !HELP_SOS.hta
ransomnote_url: http://7gie6ffnkrjykggd.onion/
sample_extension: .sage
sample_bytes: [0x28505 - 0x28509] 0xBEBA9E5A

Click here for more information about Sage 2.0

Would you like to be notified if there is any development regarding this ransomware? Click here.

Magniber

This ransomware has no known way of decrypting data at this time.

It is recommended to backup your encrypted files, and hope for a solution in the future.

Identified by

custom_rule: Matching Tor address pattern (22 addresses)
ransomnote_url: https://www.youtube.com/results?search_query=tor+browser+install

Click here for more information about Magniber

Would you like to be notified if there is any development regarding this ransomware? Click here.

Ransomware Got Past Your Antivirus?

* This is an affiliate link, and I receive commission for purchases made. I do honestly recommend Emsisoft and their products even without this affiliation.

ID Ransomware

2 Results

Sage 2.0

This ransomware has no known way of decrypting data at this time. It is recommended to backup your encrypted files, and hope for a solution in the future.

Click here for more information about Sage 2.0

Magniber

This ransomware has no known way of decrypting data at this time. It is recommended to backup your encrypted files, and hope for a solution in the future.

Click here for more information about Magniber

Ransomware Got Past Your Antivirus?

This ransomware has no known way of decrypting data at this time.

It is recommended to backup your encrypted files, and hope for a solution in the future.

This ransomware has no known way of decrypting data at this time.

It is recommended to backup your encrypted files, and hope for a solution in the future.