Home Malware Programs Ransomware Fedasot Ransomware

Fedasot Ransomware

Posted: May 8, 2019

The Fedasot Ransomware is being distributed actively with the help of phishing emails that may contain a malicious file attachment. Users who have had the unfortunate luck to come across this file and launch it on their computers are likely to have lost a large portion of their files due to the Fedasot Ransomware’s ability to encrypt documents, images, videos, archives, databases, and other file formats swiftly. It marks the names of the locked files by applying the ‘.fedasot’ extension to their names – for example, ‘image.png’ would be titled ‘image.png.fedasot’ when it is encrypted.

After the Fedasot Ransomware completes the attack, it drops the ransom message ‘cc.txt,’ which contains a lengthy note that explains the victims’ situation and tells them that they can get their files by agreeing to send a certain amount of Bitcoins to the attackers. It is not recommended to cooperate with the cybercriminals behind the Fedasot Ransomware since they may not fulfill their part of the deal even if you end up meeting their demands.

The attackers ask to be contacted by messaging vengisto@firemail.cc or gorentos@bitmessage.ch – emails that have been used by other STOP Ransomware variants like the Berost Ransomware. Some STOP Ransomware variants may be decryptable so that you should try and see if any of the free STOP decryptors are able to assist you certainly. If this technique does not work, then you should use a reputable anti-malware scanner to eliminate the file-locker, and then try alternative data recovery tools.