HOMETHREATSRenLocker Ransomware (FAKE)
APT / THREAT GROUP

RenLocker Ransomware (FAKE)

1
aliases

Intelligence Profile

It is spread using email spam, fake updates, attachments and so on. It encrypts all your files, including: music, MS Office, Open Office, pictures, videos, shared online files etc.. The files don’t actually get encrypted, their names get changed using this formula: [www-hash-part-]+[number]+[.crypter]

Threat Analysis

RenLocker Ransomware (FAKE) is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.

External References

Quick Facts

TypeAPT / Threat Group
Aliases1

Also Known As

RenLocker Ransomware (FAKE)

Research Links

Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.