Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


CryptoHost Ransomware Help & Support Topic - Telograph

  • Please log in to reply
No replies to this topic

#1 Demonslay335


    Ransomware Hunter

  • Security Colleague
  • 3,579 posts
  • Gender:Male
  • Location:USA
  • Local time:09:30 PM

Posted 07 April 2016 - 01:34 PM

A new ransomware was reported by @malwareforme recently that encrypts files and requests payment via BitCoin. Based on the source code, this ransomware goes by the name Telograph, but may more commonly be seen as CryptoHost. According to detections by Microsoft, it is possible this ransomware has been around for about a month.


The malware appears to be bundled with uTorrent installers, most likely from illegitimate sources.
No ransom note is left behind, only the program screen displayed above. File names are left un-touched.
Official analysis is still underway, but early indications suggest there may be a weakness to allow victims to decrypt their files. If you have been infected by this ransomware, please do not pay or close the window, and post here with your experience.
The following file types are targeted.

*.jpg, *.jpeg, *.png, *.gif, *.psd, *.ppd, *.tiff, *.flv, *.avi, *.mov, *.qt, *.wmv, *.rm, *.asf, *.mp4, *.mpg, *.mpeg, *.m4v, *.3gp, *.3g2, *.pdf, *.docx, *.pptx, *.doc, *.7z, *.zip, *.txt, *.ppt, *.pps, *.wpd, *.wps, *.xlr, *.xls, *.xlsl

More information to follow as it is released.

Edited by Demonslay335, 07 April 2016 - 04:02 PM.

logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic]

ransomnotecleaner-25.png RansomNoteCleaner - Remove Ransom Notes Left Behind [Support Topic]

cryptosearch-25.pngCryptoSearch - Find Files Encrypted by Ransomware [Support Topic]

If I have helped you and you wish to support my ransomware fighting, you may support me here.

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users