From ef8b4288383d5df83cea65a33b4810c93487c071 Mon Sep 17 00:00:00 2001
From: Deborah Servili <deborah.servili@gmail.com>
Date: Tue, 10 Apr 2018 10:54:36 +0200
Subject: [PATCH 1/2] add PUBG ransomware

---
 clusters/ransomware.json | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/clusters/ransomware.json b/clusters/ransomware.json
index 840d8087..1b38badd 100644
--- a/clusters/ransomware.json
+++ b/clusters/ransomware.json
@@ -9410,12 +9410,28 @@
         ]
       },
       "uuid": "abc80362-396c-11e8-bc5c-8bca89c0f797"
+    },
+    {
+      "value" : "PUBG Ransomware",
+      "description": "In what could only be a joke, a new ransomware has been discovered called \"PUBG Ransomware\" that will decrypt your files if you play the game called PlayerUnknown's Battlegrounds. Discovered by MalwareHunterTeam, when the PUBG Ransomware is launched it will encrypt a user's files and folders on the user's desktop and append the .PUBG extension to them. When it has finished encrypting the files, it will display a screen giving you two methods that you can use to decrypt the encrypted files.",
+      "meta": {
+        "refs": [
+          "https://www.bleepingcomputer.com/news/security/pubg-ransomware-decrypts-your-files-if-you-play-playerunknowns-battlegrounds/"
+        ],
+        "extensions": [
+          ".PUBG"
+        ],
+        "ransomnotes": [
+          "https://www.bleepstatic.com/images/news/ransomware/p/pubg-ransomware/pubg-ransomware.jpg"
+        ]
+      },
+      "uuid": "2239b3ca-3c9b-11e8-873e-53608d51ee71"
     }
   ],
   "source": "Various",
   "uuid": "10cf658b-5d32-4c4b-bb32-61760a640372",
   "name": "Ransomware",
-  "version": 12,
+  "version": 13,
   "type": "ransomware",
   "description": "Ransomware galaxy based on https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml and http://pastebin.com/raw/GHgpWjar"
 }

From a11bd66cf39df0af6c1af72b19855d7c8bfd7351 Mon Sep 17 00:00:00 2001
From: Deborah Servili <deborah.servili@gmail.com>
Date: Tue, 10 Apr 2018 10:54:58 +0200
Subject: [PATCH 2/2] jq

---
 clusters/ransomware.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/clusters/ransomware.json b/clusters/ransomware.json
index 1b38badd..4e42b805 100644
--- a/clusters/ransomware.json
+++ b/clusters/ransomware.json
@@ -9412,7 +9412,7 @@
       "uuid": "abc80362-396c-11e8-bc5c-8bca89c0f797"
     },
     {
-      "value" : "PUBG Ransomware",
+      "value": "PUBG Ransomware",
       "description": "In what could only be a joke, a new ransomware has been discovered called \"PUBG Ransomware\" that will decrypt your files if you play the game called PlayerUnknown's Battlegrounds. Discovered by MalwareHunterTeam, when the PUBG Ransomware is launched it will encrypt a user's files and folders on the user's desktop and append the .PUBG extension to them. When it has finished encrypting the files, it will display a screen giving you two methods that you can use to decrypt the encrypted files.",
       "meta": {
         "refs": [