ALLRIGHTY Ransomware
The ALLRIGHTY Ransomware is a file-locker Trojan in development that creates ransoming messages asking for Bitcoin money. While it has no other attacks in its early samples, future payloads could receive updating that adds in the non-consensual encryption of your media, screen-blocking pop-ups or the deletion of backups. Treat this threat as if it's a potential danger to your files and use anti-malware products for removing the ALLRIGHTY Ransomware safely from your computer.
This Trojan's Author 'Forgot' the Most Important Part
The heart of any file-locker Trojan is the strategy behind its encryption, which ranges from double-layered AES and RSA down to something as simple as password-protecting a RAR file after moving your media into it. Some new samples of an upcoming file-locking Trojan, however, show a forgetful author who hasn't had time to implement the core feature of the payload. The ALLRIGHTY Ransomware, while not very threatening currently, may become a data security problem just like Hidden Tear or the GandCrab Ransomware family, in a few days or weeks.
Malware researchers can verify very few features in the ALLRIGHTY Ransomware, which doesn't corrupt, encrypt, or harm the PC's data in any notable way. Like many families of file-locking Trojans, the ALLRIGHTY Ransomware does do one thing: it drops a Notepad TXT file telling the victims that they should pay Bitcoins into the threat actor's wallet. This placeholder ransom note doesn't contain a valid Bitcoin wallet address, currently. It also admits that the current version of the program has no encryption feature instead of pretending otherwise (for instance, by changing the names of the files).
The ALLRIGHTY Ransomware claims that the current weakness of its payload is a consequence of its author's focusing on anti-analysis features. However, most anti-malware products are detecting the ALLRIGHTY Ransomware under heuristic entries and shouldn't experience issues with flagging it as being a generic threat. As with most other, file-locking Trojans under the observation of malware experts, the ALLRIGHTY Ransomware is a Windows program, although its simplicity limits its dependencies on other software like the .NET Framework package.
Staying Alright with the State of the ALLRIGHTY Ransomware
Readers can hope that no additional fixes come in for the ALLRIGHTY Ransomware, which, in its current state, can neither harm your files nor launch other attacks worth mentioning. However, even the most basic encryption kinds can require little development or skill on the part of a programmer, and many file-locking attacks in use are virtually irreversible. Saving backups to at least one other device is a strong counter to file-locking Trojans of all kinds, including both experimental and finalized ones.
Malware experts also encourage various, general defenses against file-locking Trojans with similar, Bitcoin-ransoming intentions to the ALLRIGHTY Ransomware's campaign. The users can keep their browsers safer than default by disabling JavaScript, Java, Flash, advertisements and pop-ups. Server administrators can protect the contents of those servers with secure login credentials and avoiding using crackable passwords. Compatible anti-malware products, also, should find no troubles with removing the ALLRIGHTY Ransomware or most file-locking Trojans from any PC, given the opportunity.
The playfulness of the ALLRIGHTY Ransomware's ransoming note makes it seem little different from a harmless joke. That fact could shift with coming updates, however, and its victims certainly shouldn't rely on the ALLRIGHTY Ransomware being a self-neutering threat.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.