Kraken Cryptor 1.5 Ransomware
The Kraken Cryptor 1.5 Ransomware is a threatening file-locker, which works by encrypting the files of its victims and then offers to provide them with specialized decryption software in exchange for a hefty payment. File-lockers like this one are often propagated with the help of exploit kits, fake e-mail messages or attacks on vulnerable remote desktop services/software. However, the cybercriminals behind the Kraken Cryptor 1.5 Ransomware have opted to try out a different method, which has caught many malware researchers by surprise – the payload of this file-encryption Trojan is being distributed as a fake copy of an anti-malware application that goes by the name ‘SUPERAntiSpyware.’ What is even more unexpected is that the threatening executable is hosted on the official website of the application’s publisher, and it is not yet known how the attackers have managed to achieve this. However, one thing is undeniable – whoever has downloaded SUPERAntiSpyware from the official website recently is likely to have become one of the Kraken Cryptor 1.5 Ransomware’s victims.
The newest edition of the ransomware also relies on the ‘.onion’ extension to mark the encrypted files, and it also uses an identical name for the ransom note. However, the contents of the note ‘# How to Decrypt Files.html’ have been changed slightly– the attackers now offer free decryption to victims who are residents of countries from the CIS (Commonwealth of Independent States) region or Iran. However, they specify that the victims will need to prove their citizenship by sending the attackers a photo of their ID or passport – we would certainly not advise you to provide cybercriminals with information that personal.
Users who are not from the above countries and have had their files locked by Kraken Cryptor 1.5 Ransomware will notice an offer to purchase a decryption utility whose price has been set to 0.125 Bitcoin ($800 approximately). The attackers have provided a Bitcoin wallet address where the money should be transferred to, as well as the email shortmagnet@420blaze.it, which should be used to get in touch with them after the payment has been completed.
It is not recommended to send any money to ransomware authors, especially when dealing with file-lockers like Kraken Cryptor 1.5 Ransomware. The con artists behind this project do not provide any proof that they own a decryption tool, and there is no guarantee that they will fulfill their part of the deal if you end up paying them. Unfortunately, the Kraken Cryptor 1.5 Ransomware is not compatible with the currently available free decryption software, and its victims may not be able to fully recover their files unless they are in possession of an unharmed backup copy.
The suggestion to victims of the Kraken Cryptor 1.5 Ransomware is to run a trustworthy anti-virus scanner that will get rid of the threatening program immediately. After the threat has been removed entirely, it is safe to proceed to use 3rd-party file recovery software, which might sometimes be able to negate some of the damage done by Kraken Cryptor 1.5 Ransomware.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.