JayTHL Ransomware

JayTHL Ransomware Description

A new ransomware sample is attacking users on a global scale this month. Known as the JayTHL virus, this new malware string seems to belong to the infamous SamSam Ransomware family. Recent research still does not reveal which hacking group stays behind it. However, the typical operational chain and the built-in encryption module suggest that JayTHL is being developed and operated by experienced hackers.

The JayTHL Ransomware main distribution methods also are still undefined; yet crypto viruses usually infect their victims over phishing email campaigns, corrupted links on website controlled by attackers, file-sharing networks and freeware bundling strategies. Apart from locking up various files on the targeted PC with a strong encryption algorithm, the JayTHL Ransomware also may exhibit additional functionalities, like data harvesting, Windows registry changes, removal of Shadow Volume Copies, and persistent installation.

The JayTHL Ransomware appends the “.JayTHL” extension to all encrypted files, while its ransom note is created within a file called “FuckYouJayTHL_HELP_ENCRYPTED_FILES.TXT.” The note says that all the victim’s files have been encrypted and demands a $900 ransom to recover the files. The note contains a Bitcoin Wallet address as well, which is given as 1L532VsvWhWU6ud9h3xEJuJzgEbRtBnymE. The attackers give the e-mail address steamgamer99@gmail.com as a contact if the user needs more information. The name of JayTHL has been derived from the name of the malware researcher JayTHL, implying that the malware has been designed as a personal attack, while the ransom note ending with a few lines of curses against the same person follow up on the attempt to embarrass the researcher.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to JayTHL Ransomware may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Posted: October 30, 2019
Home Malware Programs Ransomware JayTHL Ransomware

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.