Home Malware Programs Trojans AsuraHTTP

AsuraHTTP

Posted: April 15, 2019

The AsuraHTTP is a modified version of the not-so-popular LiteHTTP botnet project. However, the author of the AsuraHTTP appears to have added an interesting ransomware feature that would allow this threat to cause significant damage to the victim’s file system. The good news is that the AsuraHTTP project seems to be under development since the ransomware provides a ransom message that is not fully finished – it asks for a ransom payment of 0 Bitcoin, and does not provide sensible contact information. Apart from the annoying ransomware feature, the AsuraHTTP also packs all features found in the original LiteHTTP project:

  • Download and execute files on the compromised computers.
  • Open websites either in hidden or visible Web browser windows
  • Automatic startup and persistence.
  • Retrieve system information.
  • Kill other bots found on the compromised computer.
  • Update, repair or remove itself.

The AsuraHTTP project may be fully weaponized shortly, and the ransomware module gets to work. We advise our readers to take the preemptive measures to ensure that they will not have to deal with the consequences of an AsuraHTTP’s attack since this botnet and ransomware combo is likely to cause a lot of trouble. Do not forget that the purpose of ransomware is to encrypt the files of its victims, and then extort them for money.

If your files have been blocked by the AsuraHTTP, then we advise you to disregard the instructions of the attackers since they may not offer any assistance even if you meet their requirements. Instead, you should use a trustworthy anti-malware software to ensure the full removal of the AsuraHTTP and its modules, as well as to check if the attacker did not plant additional threats on the computer.

After the AsuraHTTP Ransomware is removed, victims can try to use 3rd-party data recovery software suites, or attempt to restore their data from a recent backup.

Loading...