JayTHL Ransomware Description
A new ransomware sample is attacking users on a global scale this month. Known as the JayTHL virus, this new malware string seems to belong to the infamous SamSam Ransomware family. Recent research still does not reveal which hacking group stays behind it. However, the typical operational chain and the built-in encryption module suggest that JayTHL is being developed and operated by experienced hackers.
The JayTHL Ransomware main distribution methods also are still undefined; yet crypto viruses usually infect their victims over phishing email campaigns, corrupted links on website controlled by attackers, file-sharing networks and freeware bundling strategies. Apart from locking up various files on the targeted PC with a strong encryption algorithm, the JayTHL Ransomware also may exhibit additional functionalities, like data harvesting, Windows registry changes, removal of Shadow Volume Copies, and persistent installation.
The JayTHL Ransomware appends the “.JayTHL” extension to all encrypted files, while its ransom note is created within a file called “FuckYouJayTHL_HELP_ENCRYPTED_FILES.TXT.” The note says that all the victim’s files have been encrypted and demands a $900 ransom to recover the files. The note contains a Bitcoin Wallet address as well, which is given as 1L532VsvWhWU6ud9h3xEJuJzgEbRtBnymE. The attackers give the e-mail address email@example.com as a contact if the user needs more information. The name of JayTHL has been derived from the name of the malware researcher JayTHL, implying that the malware has been designed as a personal attack, while the ransom note ending with a few lines of curses against the same person follow up on the attempt to embarrass the researcher.
Use SpyHunter to Detect and Remove PC Threats
If you are concerned that malware or PC threats similar to JayTHL Ransomware may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.
Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.