• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
bitdefender releases free decryptor for mortalkombat ransomware strain

Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain

You are here: Home / General Cyber Security News / Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain
February 28, 2023

Romanian cybersecurity company Bitdefender has launched a free of charge decryptor for a new ransomware pressure known as MortalKombat.

MortalKombat is a new ransomware pressure that emerged in January 2023. It can be primarily based on commodity ransomware dubbed Xorist and has been observed in attacks concentrating on entities in the U.S., the Philippines, the U.K., and Turkey.

Xorist, detected because 2010, is dispersed as a ransomware builder, allowing for cyber threat actors to make and personalize their very own variation of the malware.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


This features the ransom note, the file name of the ransom notice, the checklist of file extensions focused, the wallpaper to be made use of, and the extension to be applied on encrypted data files.

MortalKombat notably was deployed in new attacks mounted by an unnamed financially enthusiastic threat actor as a section of a phishing campaign aimed at a wide range of businesses.

“MortalKombat encrypts numerous files on the victim machine’s filesystem, these types of as technique, software, database, backup, and digital machine data files, as well as data files on the distant spots mapped as sensible drives in the victim’s machine,” Cisco Talos disclosed earlier this month.

MortalKombat Ransomware Strain

Whilst the ransomware does not exhibit wiper conduct or delete volume shadow copies, it corrupts Windows Explorer, disables the Operate command window, and gets rid of all programs and folders from Windows startup.

It is really also acknowledged to corrupt the deleted files in the Recycle Bin folder and change the file names and types and make Windows Registry modifications to attain persistence. The danger actors at the rear of the campaign and their operational model are not known as but.

“Primarily based on the Xorist ransomware, MortalKombat spreads as a result of phishing e-mail and targets exposed RDP cases,” Bitdefender stated. “The malware receives planted via the BAT Loader that also delivers the Laplas Clipper malware.”

MortalKombat is not the only Xorist variant to have emerged in the menace landscape more than the earlier handful of months. In November 2022, Fortinet FortiGuard Labs revealed one more edition that leaves a ransom be aware in Spanish.

The advancement also comes a minor around a month right after Avast posted a free of charge decryptor for BianLian ransomware to aid victims of the malware get well locked documents without having obtaining to shell out the danger actors.

Located this posting interesting? Stick to us on Twitter  and LinkedIn to read through a lot more special information we publish.


Some parts of this posting are sourced from:
thehackernews.com

Previous Post: «how to build a cyber resilient business read to innovate and How to build a cyber-resilient business read to innovate and thrive
Next Post: MWC 2023: Huawei launches ‘world’s best’ ransomware detection system mwc 2023: huawei launches 'world's best' ransomware detection system»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
  • Deploying AI Agents? Learn to Secure Them Before Hackers Strike Your Business
  • Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
  • Beyond Vulnerability Management – Can You CVE What I CVE?
  • Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
  • Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
  • 38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
  • SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
  • Qilin Leads April 2025 Ransomware Spike with 45 Breaches Using NETXLOADER Malware
  • Security Tools Alone Don’t Protect You — Control Effectiveness Does

Copyright © TheCyberSecurity.News, All Rights Reserved.