Tyupkin malware infects ATM machines running Windows XP 32-bit version and allows the attacker to empty the ATM cash cassettes via direct manipulation.
SkimerWC trojan infects ATM machine that are designed for Russian and Ukraine banks. The Trojan's main payload is incorporated into a dynamic-link library stored in the NTFS streams.
SunCrypt ransomware encrypts data from large companies, business users and educational institutions, and then ask them to go ransomware site to learn how to pay the ransom in BTC and get the files back.
The Ploutus ATM malware family, first detected in 2013 by Symantec as Backdoor.Ploutus, allows attackers to withdraw cash from an ATM machine on command.
CNH Ransomware encrypts user data and ask user to email him at helper.china@aol.com for ransom amount. CNH Ransomware or ChinaHelper Ransomware is written in Rust, an unsual language for this task.
