- Jun 9, 2013
- 6,720
A cybercriminal going by the moniker The Rainmaker has updated the Stampedo ransomware to a new version dubbed Philadelphia and is now selling if for $400, but the good news is the malware is flawed.
Philadelphia is designed to let a wannabe ransomware criminal get into the game with just a small investment and a little knowledge, Bleeping Computers' founder, Lawrence Adams. told SCMagazine.com in an email. Some of its features include automatically detecting when a ransom is paid and then decrypting the victim's files and the ability to spread to attached storage devices and networked computers, Adams said.
“The Philadelphia Headquarter is a software that works on your machine and allows you to generate unlimited builds, see the victims on a map and on a list (with country flags and all the data you need) and also a 'Give Mercy' button if you're too good 0
,” from The Rainmakers online ad for the ransomware.
However, for all the new bells and whistles and ease of use Adams pointed out that Philadelphia also has some notable issues. One of the flaws is also put forth as a feature. Instead of utilizing a command and control server set up it includes a PHP script, that Rainmaker calls Bridges, that connects the ransomware to a user interface and also store the decryption key.
“Yes, for the most part this is a not a well thought out ransomware," Adams said. "It could change, though, if he used a strong encryption algorithm.
Full Article. Stampedo ransomware updated, but full of holes, report
Philadelphia is designed to let a wannabe ransomware criminal get into the game with just a small investment and a little knowledge, Bleeping Computers' founder, Lawrence Adams. told SCMagazine.com in an email. Some of its features include automatically detecting when a ransom is paid and then decrypting the victim's files and the ability to spread to attached storage devices and networked computers, Adams said.
“The Philadelphia Headquarter is a software that works on your machine and allows you to generate unlimited builds, see the victims on a map and on a list (with country flags and all the data you need) and also a 'Give Mercy' button if you're too good 0
,” from The Rainmakers online ad for the ransomware.However, for all the new bells and whistles and ease of use Adams pointed out that Philadelphia also has some notable issues. One of the flaws is also put forth as a feature. Instead of utilizing a command and control server set up it includes a PHP script, that Rainmaker calls Bridges, that connects the ransomware to a user interface and also store the decryption key.
“Yes, for the most part this is a not a well thought out ransomware," Adams said. "It could change, though, if he used a strong encryption algorithm.
Full Article. Stampedo ransomware updated, but full of holes, report
