The Scarab Ransomware continues to grow and it may soon overtake the Dharma Ransomware family in terms of size. The newest addition to the list of file-lockers based on the Scarab Ransomware’s code is called the Croc Ransomware, and it has already claimed the files of at least one user in Romania. Keep in mind that while there is just one reported attack involving the Croc Ransomware, it is likely that there are several unreported cases, so it is impossible to provide more specific details about this campaign’s reach and scale.
The Croc Ransomware has not been improved in any way by its authors, but this does not mean that it cannot get its harmful task done – this file-locker is still capable of swiftly encrypting a large portion of files, therefore making it impossible for anyone to access their contents. By doing so, the Croc Ransomware can block its victims from accessing important files, projects, documents, photos, etc. Naturally, the ransomware offers a ‘solution’ that comes at a certain price – while the price of the decryption tool used by the attackers is not specified, you can rest assured that the Croc Ransomware’s operators will want at least a few hundred dollars in exchange for their assistance.