Ada Covid Ransomware

The Ada Covid Ransomware is a file-locker that appears to have been made in a hurry since it fails to provide victims with any meaningful information that can help them get their files back to normal. Usually, the authors of file-encryption Trojans like this one tend to offer proof that they are able to decrypt the locked files – this is usually done by telling victims to send 1-2 files to the attackers, and they will be unlocked for free. However, the Ada Covid Ransomware's authors do no such thing and, instead, their ransom note simply instructs victims to message the WhatsApp number +441904501029. Surprisingly, this is not the first time this number has been used in a ransomware attack – the same one was found in the ransom note of the Gesd Ransomware that was released in February 2020.

The Ada Covid Ransomware's attack is still devastating, and it may be difficult to recover from it entirely. The threat is able to encrypt many file formats, and it will mark the names of the corrupted files by using the '.pdf.pdf' extension. The ransom message is found in the file 'Name of your explaint.txt' that the Ada Covid Ransomware will drop on the infected system after it is done encrypting files.

Currently, victims of the Ada Covid Ransomware cannot rely on free decryption tools. The best thing to do is to avoid contacting the perpetrators because they may end up asking you for a ransom payment. Needless to say, you should not pay money to anonymous cybercriminals who have not given you any reasons to trust them. You should use an anti-virus scanner to eradicate the Ada Covid Ransomware infection and then look for popular file recovery tips and techniques.