CLICO Cryptor 3 Ransomware

New version of Ransomware created to test AV and sandbox products

CLICO Cryptor 3 Ransomware (aka CLICO Crypter). Ransomware created to test AV and sandbox products. JAVA based malware. Encrypts users files using AES128 algorithm. Encryption key protected by RSA2048 public key. New version has different exe module





New version looks like this





As you can see we baypassed CP Sanblast sanbox. Check MD5 from CP and VT.





Mutations






You can find fist version here and second here
You can also find us on Twitter