Home Malware Programs Ransomware MegaCortex Ransomware

MegaCortex Ransomware

Posted: May 2, 2019

Facing the consequences of a file-encryption Trojan’s attack can be rather devastating, since you may be able to rely on a free data recovery option rarely. Such is the case with attacks that involve the MegaCortex Ransomware, a new file-locker that has already managed to infect at least one computer in Canada. Unfortunately, this file-locker appears to use a secure method to generate, use, and store the encryption key, therefore making it impossible to recover it.

The file types that the MegaCortex Ransomware targets are very diverse and its victims are likely to end up losing the ability to access many images, documents, archives, spreadsheets, text files, videos and other files. All files that this ransomware locks are marked with the ‘.aes128ctr’ extension – however, it is not yet clear whether AES-128 is the encryption algorithm utilized by this threat.

Of course, the authors of the MegaCortex Ransomware have not forgotten to include a ransom note that provides the victim with details about the attack, as well as with advice on what they need to do to get their files back – the full set of instructions is found in the file ‘!!!_READ_ME_!!!.txt,’ which the MegaCortex Ransomware creates after it is done with the file-encryption task. According to this document, victims will need to pay for the decryption of their files, but they also are offered the chance to get two of their files unlocked for free. To take advantage of this offer, the victims should send two files for decryption and the file ‘fracxidg.tsv’ (which is stored in their system partition) to either shawhart1542925@mail.com or anderssperry6654818@mail.com.

It is recommended to make the most out of the free decryption offer, but we assure you that you should not accept to send money to the attackers. They may trick you easily, and use the money to develop threatening file- The suggestion to users affected by the MegaCortex Ransomware’s attack is to eliminate the file-encryption Trojan with the help of a suitable anti-virus tool and try out alternative data recovery options.

Loading...