Home Malware Programs Ransomware Hog Ransomware

Hog Ransomware

Posted: March 9, 2021

The Hog Ransomware is a newly identified file-locker, which is likely to still be under development. It is not clear what tricks its creators are using to spread it online, but they may mask it as pirated software, game cracks, pirated movies, or similar content. Typically, the goal of these attacks is to encrypt the victim's data, and then offer to provide them with a decryptor if they pay a ransom fee. Hog Ransomware's creators, however, appear to have a different plan – their malware drops a ransom note asking the victim to join a particular Discord server, and fetch the decryptor from there. Surprisingly, there are not any unexpected tricks, and following their instructions does indeed work.

Victims of the Hog Ransomware will see the '.hog' extension among the names of their files, and they also will find out that they cannot open important documents, images, media and other content. Hog Ransomware's ransom message is displayed in a new window titled 'Hog Ransomware Decryptor.' This file displays the message of the attackers, but it also works in the background to check for active Discord instances and the server ID of the criminals' Discord server. If it finds a match, it triggers the decryption process automatically.

While decrypting files locked by the Hog Ransomware is free for now, there is a chance that the creators of the malware may decide to modify its behavior in the future. You should use appropriate anti-malware software to prevent threats like the Hog Ransomware from damaging your computer.

Related Posts

Loading...