'Epta.mcold@gmail.com' Ransomware
The 'Epta.mcold@gmail.com' Ransomware is based on a less known ransomware family that goes by the name ‘Maoloa Ransomware.’ This family was first spotted in February 2019, but it did not surprise malware researches with high-activity or infection rates, hence why it did not receive much media attention. However, it seems that the group behind it or a different criminal linked to the hackers has developed a new variant that goes by the name 'Epta.mcold@gmail.com' Ransomware. It is able to encrypt a rich variety of files swiftly, therefore ensuring that the ransomware’s attack will inflict the maximum amount of damage. Whenever the 'Epta.mcold@gmail.com' Ransomware locks a file, it will modify its name by adding the ‘.[epta.mcold@gmail.com]’ extension.
The ransom message is delivered when there are no files left to encrypt, and it is usually found in the file ‘!INSTRUCTI0NS!.txt.’ Naturally, the attackers ask to receive a Bitcoin compensation in exchange for their decryption software – do not accept this offer as there is no guarantee that you will get anything in return. The attacks supply three email addresses for contact – epta.mcold@gmail.com, epta.mcold@yahoo.com and epta.mcold@aol.com.
Unfortunately, a free decryptor is not available for this ransomware family so that its victims may need to hang on alternative data recovery options that might not always work. Regardless of the recovery option you choose, your top priority should be to ensure the file-locker removal with the help of a suitable and updated security tool.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.