SYMBOLCOMMON_NAMEaka. SYNONYMS
win.your_cyanide (Back to overview)

YourCyanide

aka: GonnaCope, Kekpop, Kekware

According to Trend Micro, this is a ransomware written as a Windows commandline script, with obfuscation applied.

References
2022-06-02Trend MicroIeriz Nicolle Gonzalez, Nathaniel Morales, Monte de Jesus
@online{gonzalez:20220602:yourcyanide:0e8d1cb, author = {Ieriz Nicolle Gonzalez and Nathaniel Morales and Monte de Jesus}, title = {{YourCyanide: A CMD-Based Ransomware With Multiple Layers of Obfuscation}}, date = {2022-06-02}, organization = {Trend Micro}, url = {https://www.trendmicro.com/en_us/research/22/f/yourcyanide-a-cmd-based-ransomware.html}, language = {English}, urldate = {2022-06-07} } YourCyanide: A CMD-Based Ransomware With Multiple Layers of Obfuscation
YourCyanide

There is no Yara-Signature yet.