Chartwig is a malicious ransomware strain that encrypts victim files and demands ransom payment for decryption. First observed in the wild on November 1, 2016, this ransomware has been actively targeting systems worldwide.
Quick Facts
Ransomware Family
Chartwig
First Seen
November 1, 2016
How Chartwig Ransomware Works
Targeted Files
Written in PowerShell
Technical Indicators
Associated Executable Files
The following executable files are associated with Chartwig ransomware:
ransomware-chartwig.exe
tmp000001f9
tmp000001f8
tmp000001f7
tmp00000035
tmp00000034
tmp00000033
tmp0000004f
tmp0000004e
tmp0000004d
tmp0000002f
tmp0000002e
tmp0000002d
tmp00000047
tmp00000046
tmp00000045
tmp00000038
tmp00000037
tmp00000036
tmp0000000f
tmp0000000e
tmp0000000d
tmp00000005
tmp00000004
tmp00000003
tmp00000002
tmp00000001
dropped.ps
Elastio Can Help You
Don't let Chartwig ransomware take over your data
Elastio provides advanced ransomware protection and recovery solutions to keep your organization safe.
This Chartwig ransomware analysis is part of Elastio's comprehensive ransomware detection database. Elastio provides advanced ransomware protection and recovery solutions, helping organizations defend against and recover from ransomware attacks like Chartwig.