Avaddon Ransomware
Avaddon ransomware encrypts user data with AES-256 + RSA-2048 and then demands a $150 to $350 or more in BTC to get the files back.
Avaddon ransomware threatens to publish the stolen data to increase the victim’s pressure (hence the additional name – publisher). As known from other Ransomware, ransomware operators start stealing data even before encrypting files. Such actions of extortionists were reported in the media.
Since January 2021, the ransomware behind this ransomware has been using DDoS attacks to force the victim to contact them and negotiate a ransom.
Shutdown in May 2021
After almost 1,5 years of successful activity, being considered as one of the most prolific ransomware groups, Avaddon developers decided to stop their activity.