FTCODE (Malware Family)

FTCODE

The malware ftcode is a ransomware which encrypts files and changes their extension into .FTCODE. It later asks for a ransom in order to release the decryption key, mandatory to recover your files. It is infamous for attacking Italy pretending to be a notorious telecom provider asking for due payments.

References

2020-06-22 ⋅ Github (StrangerealIntel) ⋅ Twitter (@Arkbird_SOLG)
FTcode targets European countries
FTCODE

2020-01-21 ⋅ KPN ⋅ KPN
FTCODE: taking over (a portion of) the botnet
FTCODE

2020-01-16 ⋅ Zscaler ⋅ Amandeep Kumar, Atinderpal Singh, Rajdeepsinh Dodia
FTCODE Ransomware - New Version Includes Stealing Capabilities
FTCODE

2019-10-02 ⋅ Certego ⋅ Marco Bompani, Matteo Lodi
Malware Tales: FTCODE
FTCODE

2019-10-02 ⋅ Dissecting Malware ⋅ Marius Genheimer
Nicht so goot - Breaking down Gootkit and Jasper (+ FTCODE)
FTCODE JasperLoader GootKit

2013-03-05 ⋅ Sophos Naked Security ⋅ Anand Ajjan
Russian ransomware takes advantage of Windows PowerShell
FTCODE

There is no Yara-Signature yet.

FTCODE Propose Change

References

FTCODE