Redeemer Ransomware

In June 2021, the developer behind Redeemer released the ransomware builder on an underground forum. As specified by the developer, the ransomware is free to use. However, the TA using the Redeemer ransomware is required to share 20% of the victim’s total ransom amount (collected in Monero). Earlier this month, the author of Redeemer ransomware released their new version – Redeemer 2.0 – with updated features. Some of the new features of ransomware mentioned by the developer are: New affiliate toolkit with GUI (no dependencies) New decrypter with GUI (no dependencies) Modified ransom message Added the option of using XMPP Chat/Tox Chat/up to two emails for communication Added support for Windows 11 Prevented the damaging of Windows Operating Systems in certain cases Added amount and campaign ID to the Redeemer executable and affiliate decryption process so the affiliate can see the requested amount/campaign ID Now all encrypted files have a new icon making it clear that they were encrypted Lots of small fixes The available Redeemer package includes the build.dat, decrypter, and the affiliate toolkit.