VanHelsing Ransomware [Source]

pinkman

pinkman

BOSS
Staff member
ADMIN
LEGEND
ULTIMATE
SUPREME
MEMBER
BFD Legacy
Joined
Feb 3, 2025
Messages
2,253
Reaction score
19,035
Deposit
0$
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:
To view the content, you need to Sign In or Register.
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
top
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
nnn
 
  • Like
Reactions: DEX
pinkman said:
与 VanHelsing 勒索软件即服务 (RaaS) 相关的勒索软件。它使用 C++ 编写,接受多个命令行参数来控制加密过程,例如是否加密网络和本地驱动器,或者是否加密特定目录和文件。VanHelsing 最近被泄露,该软件本身售价 1 万美元。

特征

跨平台:攻击 Windows、Linux、BSD、ARM 和 VMware ESXi(目前仅在 Windows 系统上确认过攻击案例)。加密:使用 ChaCha20 和 Curve25519 算法,对大文件进行部分加密,文件扩展名为 .vanhelsing。

双重勒索:加密文件并威胁泄露数据。

隐身模式:“静默”模式,删除卷影副本,更改壁纸,可通过命令行进行灵活设置。
下载:*** 隐藏文本:无法引用。 ***
Click to expand...
t
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
dd
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
thanks
 
pinkman said:
Ransomware related to VanHelsing RaaS. Written in C++, it accepts several command line arguments that control the encryption process, such as whether to encrypt network and local drives or specific directories and files. VanHelsing was recently leaked, the software itself cost $10,000.

Features

Cross-platform: Attacks Windows, Linux, BSD, ARM, VMware ESXi (only confirmed cases on Windows). Encryption: Uses ChaCha20 and Curve25519, partial encryption for large files, .vanhelsing extension.

Double blackmail: Encrypts files and threatens to leak data.

Stealth: "Silent" mode, delete shadow copies, change wallpaper, flexible settings via command line.
download:*** Hidden text: cannot be quoted. ***
Click to expand...
 
You must log in or register to reply here.

Similar threads

Depov
Ransomware in 60 minutes: how Akira and Medusa/Storm-1175 accelerated attacks and how to detect them
Replies
0
Views
223
Depov
Depov
H
Sell Ransomware builder
Replies
0
Views
262
hellobyte12
H
pinkman
NEWS Paid safety for the chosen ones. Google Disk has learned to resurrect files after ransomware
Replies
0
Views
536
pinkman
pinkman
pinkman
NEWS CVSS 10.0, root without authorization and six weeks of handy at ransomware. Amazon accidentally found all the tools of Interlock
Replies
0
Views
402
pinkman
pinkman
pinkman
NEWS Cybercrime Hydra: Malware, Stealers, and Ransomware Have Merged – Cut Off One Head, and Three More Attack
Replies
1
Views
501
asssaaam
A
Top Bottom