The Sigrun Ransomware is providing the decryption key to Russian victims for free, while others have to pay a ransom of $2,500 worth of Bitcoin or Dash for the victims. The case was first spotted by the malware researcher Alex Svirid, and other experts confirmed his discovery. The malware also avoids infecting Russian victims by detecting the keyboard layout, this behavior allows Russian vxers to avoid the response of local authorities. The author of the malware told BleepingComputer that he isnt from former USSR republics.”]
Source: https://securityaffairs.co/wordpress/73201/malware/sigrun-ransomware.html