Ransomware encrypts users files and demands 50-Euro Ransom

A malware Encrypting user files and demanding money is not new one, known as Ransomware. Recently, BitDefender security researchers come across a ransomware.  As usual, the malware encrypts the user file and demanding 50 euros in exchange to unlock.

Once the malware infects the victim, it encrypts all extensions pertaining to movies, music, photos, shortcuts, PDF, text and html files by adding .EnCiPhErEd to the valid file extension. It also changes the default icons of all the files with modified extensions to a pink common icon.

In each folder it finds on the infected system, the scareware adds a file named "HOW TO DECRYPT FILES.txt" and the following warning message:

“Attention! All your files are encrypted!

You are using unlicensed programms!

To restore your files and access them,

send code Ukash or Paysafecard nominal value of EUR 50 to the e-mail Koeserg@gmail.com.

During the day you receive the answer with the code.

You have 5 attempts to enter the code. If you exceed this date all data is irretrievably spoiled. Be careful when you enter the code!”

Bitdefender security solutions detect the malware as Trojan.Ransom.HM.

Recently, TrendMicro researcher come across a ransomware that works differently from the usual ransomware;Modifies the MBR record instead. (read the full article here).

Security Tips:
To stay secure, users are advised to pay great attention to the files you choose to download from your favorite peer-to-peer network.
Category: /

Share this with Your friends: