'.BDKR File Extension' Ransomware

The '.BDKR File Extension' Ransomware is a variant of the 2.0 version of the LockCrypt Ransomware family. This file-locker Trojan can block your media with an asymmetric pair of encryption algorithms and create text messages demanding ransoms for unlocking them. There are public decryption services available for users who need to recover their work without paying the ransom, and anti-malware products of most brands can delete the '.BDKR File Extension' Ransomware before it accesses any of your files.

The File-Entombing Crypt Goes One Trojan Deeper

The LockCrypt 2.0 Ransomware was a significant update to the family of file-locker Trojans, which, previously, used a relatively less secure means of blocking the files of any victims. Accordingly, readers should be unsurprised that the latest variant of this family is using the second edition, which boasts of AES and RSA-based encryption for keeping your documents and other work unavailable. The '.BDKR File Extension' Ransomware, while it uses all the features of the LockCrypt 2.0 Ransomware, is being rated as a mostly cosmetic update by malware researchers.

Old attacks from the '.BDKR File Extension' Ransomware's family emphasize the use of Remote Desktop features and brute-force attacks for compromising their targets, such as business-owned networks. However, some of the '.BDKR File Extension' Ransomware's file details imply other methods of introduction, such as torrents. After the installation, which requires little more than a modern Windows environment, the '.BDKR File Extension' Ransomware encrypts specified files on the PC with the AES-256 and an internally-saved RSA key.

The '.BDKR File Extension' Ransomware injects ID serial numbers into the filenames of what it blocks, but also adds a different extension from its predecessor: 'bkdr' instead of the '.BI_ID' tag of old releases. The Notepad ransoming message that the '.BDKR File Extension' Ransomware creates, also, keeps the reference to an 'unknown virus,' which malware experts note as being a false lead that's meant to trick victims into disconnecting the ransoming negotiations from the source of the data loss.

Blocking a Torrent of File Problems

Old decryption services for the LockCrypt Ransomware family don't function on the new ones built off of LockCrypt 2.0 Ransomware, but freeware decryption solutions, even for the latest variant, the '.BDKR File Extension' Ransomware, may be possible. However, no cryptography specialist can promise universal decryption solutions for all file-locking Trojans, which forces malware experts to encourage backups as the ideal defense against these attacks. Backing up content to traditionally secure locations, instead of depending on a default, Windows failsafe like Shadow Copies will guarantee that the '.BDKR File Extension' Ransomware can't lock anything that the user can't retrieve.

The '.BDKR File Extension' Ransomware's family often uses RDP and brute-force methods of breaking into servers and running the Trojan via manual controls. However, malware analysts are noticing samples of this threat that use names that disguise it as being torrent-related content. Users should remember that having anti-malware programs scan their downloads regularly, and avoiding unsafe downloading resources, can help with quarantining or deleting the '.BDKR File Extension' Ransomware before any media damage happens.

The early versions of the LockCrypt Ransomware don't try to hide – instead, they usually are installed and ran by criminals who already have a backdoor into the system. However, the '.BDKR File Extension' Ransomware could be a change in tactics, and any PC user with monetarily-valuable data shouldn't keep only one copy of it.