New Ransomware Apocalypse Prompts Victim to Email Hacker for Instructions

apocalypse-ransomwareA new ransomware called Apocalypse was recently discovered by security researchers at Emsisoft. According to their findings, the ransomware encrypts data, appends the .encrypted extension to them and then requires the victim to email the hacker for ransom instructions. For example, if Apocalypse encrypts a file called ‘test.jpg’, a ‘test.jpg.encrypted’ file and ‘test.jpg.encrypted.How_to_Decrypt.txt’ file will be created.

The ransomware will also create an autorun entry that points to C:\Program Files (x86)\windowsupdate.exe so that the ransomware is started when a user logs into Windows. Once it runs, it will display a lock screen that says: If you are reading this message, all the files in this computer have been crypted!![sic] documents, pictures, video, audio, backups, etc. If you want to recover your data, contact the email below. Email decryptionservice@mail.ru. We will provide decryption software to recover your files. If you don’t contact before 72 hours, all data will be lost forever. Users can reboot into safe mode to bypass the lock screen and run the decryptor or use the free tools made available for affected users to get their files back.
HIDE

Like it? Add this infographic to your site:
1. Click on the box below.   2. Press Ctrl+A to select all.   3. Press Ctrl+C to copy.   4. Paste the code into your page (Ctrl+V).

Image will appear the same size as you see above.

Опубликовано в Cybercrime & Digital Threats, Ransomware, Cybercrime