Jest Ransomware
The Jest Ransomware is a file-locking Trojan that's a close relative of the FunFact Ransomware. The presence of this threat is surmisable through symptoms like non-opening media (documents and other recreational or work content), deleted Windows backups, and pop-up ransom warnings with timers. Users should have a backup as a precaution for full data recovery and may use their anti-malware services for removing the Jest Ransomware in safety.
Little in the Way of Fun with this New Fact
The FunFact Ransomware is a several-old Trojan whose encryption-and-extortion attacks are, mostly, of interest for the possibility of including smartphone owners along with traditional Windows PC ones. Whichever its preferred targets might have been, the Trojan is seeing a new update by the name of the Jest Ransomware. Although malware experts only are confirming Windows builds, the Trojan's samples show significant, data-destructive capabilities, already.
The names of the Jest Ransomware's installers are using various labels, such as 'jeno2,' 'recover,' or, interestingly, 'chang.txt' (it's an EXE or executable, not a text file). Windows users tricked into launching the program by unknown means provoke various attacks from the Jest Ransomware, including the infamous use of encryption for turning digital media files into non-opening copies of themselves. Like the much older FunFact Ransomware, the Jest Ransomware also includes multiple ransoming instructions: an INI, a desktop wallpaper and an interactive pop-up with a countdown.
Other features are less visible than the above but even more harmful to local data. The Jest Ransomware empties the Recycle Bin, deletes the Restore Points' Shadow Volume Copies, turns off boot-up warnings, and terminates some software related to workplace productivity and security forcibly. These attacks are likely to remove traces of old data and give the Trojan as much file access as possible.
A Remixed Trojan's Sour Punchline
The Jest Ransomware asks for 0.3 Bitcoins for returning the user's files by decrypting them, although its wallet address has no transactions, so far. This ransom amount is typical of many Trojans, such as the Dragon Ransomware or the Sysfrog Ransomware, but translates into thousands in USD. Such an attack is more suitable for smaller, unprotected businesses and their servers, which could be at risk from the Jest Ransomware's infection methods. However, even individuals' files are in danger, and the Jest Ransomware doesn't discriminate between content such as average pictures and documents versus more massive server databases.
Due to malware researchers having limited clues on the Jest Ransomware's infection vectors, users should remain on guard with all the usual security guidelines. Turning off features like JavaScript may protect Web-browsing activities, and content such as e-mail attachments and torrents should have appropriate threat scans before the user opens them. The Jest Ransomware is using English as its ransom note language of preference, but this fact applies to an immense majority of file-locking Trojans.
The Jest Ransomware isn't any higher a brand of comedy than the FunFact Ransomware was the first time around. Encryption against those who aren't ready for it isn't fun for anyone, except the criminals performing the high-profit 'prank.'
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.