For future and present reference I would like to keep a living file screening list for CryptoLocker, CryptoWall, CryptoTesla and other variants of Ransomware for Windows Server where administrators using File Server Resource Manager FSRM.msc actively monitor network shares and files. I will open this up for comment and will include matches found in common variants. If you have an extension or file name not on this list please list relative information in a reply!
Original ransomware reference copied from Pastebin...
Last Update: August 19th 2015
*want your files back.*
Author: quietman7 (Global Moderator)
Last Update: August 26 2015
PLEASE HELP KEEP THIS LIST GOING AND UPDATED!
Sep 9th 2015
2 years ago
|we did see .mp3 ext encrypted file. when ransomware encrypted any MS word file , It ext changed to XYZ.doc.mp3||
Mar 11th 2016
1 year ago