Trustwave says of its example that RIG will snag one in ten victims visiting a booby-trapped web page, of whom half of one per cent will cough up a ransomware payment, on average 0.

The margins are a clear indicator of the commoditisation of crimeware, removing the need for blackhats to be jack-of-all-trades and facilitating rapid specialisation.

"That’s an exceptional, albeit unethical and illegal, investment," the company says in its annual report [PDF].

The company says crims could clear a conservative $84,000 a month for a $5,900 outlay for the CTB Locker ransomware, the RIG exploit kit, stolen web traffic, and malware crypting packer services.

Net scum stand to make even more if they invest in co-current ransomware exploit kit campaigns.

Exploit kit traders and ransomware slingers are in one of the most profitable industries in the world, landing a whopping 1,425 percent profit margin for raiding legitimate trade.

Figures from infosec firm Trustwave show the blackhats who are enjoying what appears to be a current boom can score outrageous amounts of money by using the off-the-shelf hacking kits to deliver ransomware, trojans, and ad stealers to victims using exploit kits.

