GetCrypt Ransomware

The GetCrypt Ransomware’s activity has not gone unnoticed by malware researchers, and experts were quick to dissect this file-locker and inspect its features up close. Sadly, the news is that the GetCrypt Ransomware is impossible to decrypt via free utilities, and the only people able to unlock the files it encrypts are its operators. However, you cannot expect them to do this free of charge, and the GetCrypt Ransomware’s authors are likely to demand a hefty ransom payment in exchange for their assistance. The only guaranteed way to fully undo the damage done by the GetCrypt Ransomware is to restore the locked files from a recent data backup.

The GetCrypt Ransomware might reach potential victims via fake email messages that contain a corrupted file attachment cleverly disguised. If the victim falls for the social engineering tricks that the attackers employ, they may end up unleashing the GetCrypt Ransomware on their computers unknowingly. The consequences of this event are very dire since this file-locker is able to encrypt thousands of files that are likely to contain important information swiftly. All files that the GetCrypt Ransomware locks are marked with a random four character extension (e.g. ‘.NHCR’ or ‘.ONYC’). The extension seems to be generated for every victim randomly. All victims of the GetCrypt Ransomware will see the same ransom note on their computers – ‘# DECRYPT MY FILES #.txt.’ This ransom note tells the victims to contact getcrypt@cock.li for decryption assistance, but it also warns them that they will have to accept to pay a Bitcoin compensation for the decryptor.

You should not cooperate with the attackers because the risk of being scammed is rather high. You cannot trust anonymous cybercriminals blindly and send them money so that we advise you to try to resolve the issue by relying on legitimate anti-virus and data recovery software.