'.letmetrydecfiles File Extension' Ransomware

The '.letmetrydecfiles File Extension' Ransomware is a Trojan with code basing itself on the SamSam Ransomware, a threat whose campaigns attacked servers in the healthcare industry previously. Both Trojans use encryption to lock the files on an infected PC, potentially preventing them from being usable until you agree to pay the remote attacker's ransom. Making backups not readily accessible from all workstations and using anti-malware utilities for the immediate removal of the '.letmetrydecfiles File Extension' Ransomware are prime defenses against this Trojan.

'Sam' Has a New Name for Attacking Your Files

Since early in the previous year, the SamSam Ransomware, AKA Samas, has had a history rich in details corroborating its likely administration by an experienced group of threat actors. Like most Trojan authors with a dedication to the market for file-encrypting threats, they also are creating new variants semi-regularly, such as the '.powerfulldecrypt File Extension' Ransomware and the '.letmetrydecfiles File Extension' Ransomware. The latter is the newest member of this family, with malware experts unable to confirm it until 2017.

The '.letmetrydecfiles File Extension' Ransomware is expected to compromise business servers with employees using easily-cracked passwords or insecure network standards, particularly Remote Desktop settings. Con artists can install this threat manually, after which it targets and encrypts over two hundred types of data formats. The '.letmetrydecfiles File Extension' Ransomware gives the locked formats the '.letmetrydecfiles' extension for identifying them and creates an HTML ransoming message. Note that malware experts sometimes see threats of the '.letmetrydecfiles File Extension' Ransomware's family uninstalling themselves after performing their payloads, which eliminates both the evidence of the intrusion and any samples for analysis.

Normally, the '.letmetrydecfiles File Extension' Ransomware's message will ask for payment through Bitcoins to decrypt and unlock any of the damaged files. Like most Trojans attacking business sector-based targets, the '.letmetrydecfiles File Extension' Ransomware uses a sufficiently sophisticated encryption algorithm that no public domain cracks are available for it, for now.

Stopping Your Servers from Being a Trojan's Coin Bank

Blocking threats like the '.letmetrydecfiles File Extension' Ransomware preemptively is often the only way of guaranteeing that no file damage occurs that you can't recover from later. Rotating your passwords and implementing passwords not susceptible to brute-force style attacks are both important means of keeping remote attackers from compromising a PC remotely. In attacks by categorically similar families of Trojans, malware analysts often see e-mail attachments as alternate delivery routes. However, most anti-malware solutions should be able to detect embedded drive-by-download exploits, Trojan droppers and related threats.

While the '.letmetrydecfiles File Extension' Ransomware may not maintain system persistence, its introduction to a PC can entail the installation of other threats. Its threat actors also may choose to modify this Trojan's behavior from past versions of the SamSam Ransomware. A complete recovery always should include using active anti-malware products to scan for and delete the '.letmetrydecfiles File Extension' Ransomware, if needed, after which you can restore the encryption-locked content from any available backup.

Even the most advanced Trojans need some help to infect a PC in the first place. For better or worse, threat campaigns just like the '.letmetrydecfiles File Extension' Ransomware's attacks are dependent on archetypal mistakes in network security that are highly preventable with a minimum of worker education.