Anony.killers@protonmail.com Ransomware
Posted: May 23, 2017
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 10/10 |
|---|---|
| Infected PCs: | 15 |
| First Seen: | May 23, 2017 |
|---|---|
| OS(es) Affected: | Windows |
The 'anony.killers@protonmail.com' Ransomware is a Trojan that tries to lock your files so that it can demand ransoms for restoring them. While this threat is in development, its encryption feature is theoretically functional and can block content, such as pictures, archives, or documents, in any specified locations. Keeping backups can mitigate any risk of damage from threats of this category, and any active and updated anti-malware product should delete the 'anony.killers@protonmail.com' Ransomware automatically.
The File Killers Making Themselves Known Anonymously
Between increasingly cheap RaaS Trojans and outright 'free' ones like Hidden Tear, con artists have more resources than they could need to launch a campaign for extorting money with help from encryption attacks. The 'anony.killers@protonmail.com' Ransomware is one of the newest threats in this category that malware experts have identified in a mid-development stage, meaning that further work on its features is probable. For now, however, the Trojan already includes functions for encoding local content on the PC and showing threatening messages to the user.
Malware researchers haven't fully analyzed the encryption routine the 'anony.killers@protonmail.com' Ransomware uses, although it does determine which media to attack by scanning specific locations on the PC. While the 'anony.killers@protonmail.com' Ransomware targets a demo folder currently, in the future, it may analyze areas like Downloads or the desktop for files to encipher with an algorithm, such as the AES-128. The Trojan does add an '.anon' extension to every piece of media it blocks this way, like May's FuckTheSystem Ransomware.
The Trojan has one other feature of note: its Windows pop-up, which contains brief ransoming instructions for contacting the e-mail to unlock your files, along with vulgarities directed to the victim. The 'anony.killers@protonmail.com' Ransomware's ransom negotiations use English, although threats in this category often default to that language, to guarantee their overall compatibility with different countries.
Putting a Killing Spree to a Sudden Stop
Although the 'anony.killers@protonmail.com' Ransomware has many of the features of a file-encrypting threat, it also is missing others. The Trojan doesn't re-launch itself after the PC reboots and doesn't display its messages in formats that would block your screen or desktop. Accordingly, any victims have full access to Windows recovery utilities and features that could help them retrieve their media and disinfect the system. However, since the 'anony.killers@protonmail.com' Ransomware is unfinished, all of these facts may be less so with future updates.
The 'anony.killers@protonmail.com' Ransomware is compatible with the Windows systems starting at Vista and upwards. Default anti-malware protection may block many of the distribution exploits that con artists can use with threats of this category, including corrupted e-mail attachments, toxic website addresses, and the drive-by-downloads of an exploit kit. Malware researchers always encourage updating anti-malware programs for improving their detection rates and helping them delete the 'anony.killers@protonmail.com' Ransomware, and similar Trojans, with little to no trouble.
The future will have to reveal how industrious or invested the 'anony.killers@protonmail.com' Ransomware's authors are in making this Trojan truly competitive in a frantic, underground marketplace. However, whether it's a cheap cash-in or a long-term project, the 'anony.killers@protonmail.com' Ransomware is a very believable danger to any files without backup copies.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.