Critroni - File Encrypting Ransomware out in the Wild
Jul 21, 2014
A new ransomware from the Crypto-Ransomware family has been detected by the security researcher, which is being sold in different underground forums from the last month and recently included in the Angler exploit kit . The latest ransomware, given the name " Critroni ", includes a number of odd features that makes it out of the ordinary and according to the researchers, it's the first ever Crypto ransomware seen that uses the Tor anonymizing network for command and control to conceal its communication. According to a detailed analysis of the ransomware threat by a French security researcher who uses the handle Kafeine, the Critroni ransomware is being sold for around $3,000 in black forums and is recently being used by a large number of attackers, including those who use the Angler exploit kit to drop a Spambot on victims' computers. " Placing a server in onion-domain ( TOR ), close to domain abuse can not be practically impossible to trace the owner and shutdown the
