add complexity level [WIP - DO NOT MERGE]

pull/141/head
Deborah Servili 2019-04-05 16:16:03 +02:00
parent b5026a101b
commit 97df10ab9e
No known key found for this signature in database
GPG Key ID: 7E3A832850D4D7D1
1 changed files with 47 additions and 0 deletions

View File

@ -16,6 +16,11 @@
"value": "element", "value": "element",
"expanded": "Element", "expanded": "Element",
"description": "Elements that composed or are linked to a ransomware and its execution." "description": "Elements that composed or are linked to a ransomware and its execution."
},
{
"value": "complexity-level",
"expanded": "Complexity level",
"description": "Level of complexity of the ransomware."
} }
], ],
"values": [ "values": [
@ -52,6 +57,48 @@
"expanded": "a downloader is a means of getting malware into a machine while bypassing the security checks, by downloading it instead of carring it." "expanded": "a downloader is a means of getting malware into a machine while bypassing the security checks, by downloading it instead of carring it."
} }
] ]
},
{
"predicate": "complexity-level",
"entry": [
{
"value": "no-actual-encryption-fake-scareware",
"expanded": "No actual encryption (fake scareware). infection merely poses as a ransomware by displaying a ransom note while not actually encrypting user files"
},
{
"value": "display-ransomnote-before-encrypting",
"expanded": "Displaying the ransom note before encryption process commences. As seen in the case of Nemucod, some ransomware will display a ransom note before file encryption. This is a serious operational flaw in the ransomware. The victim or their antivirus solution could effectively take prompt evasive action to prevent ransomware from commencing encryption."
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
{
"value": "",
"expanded": ""
},
]
} }
] ]
} }