MindLost Ransomware
Posted: January 31, 2018
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 7 |
| First Seen: | November 21, 2023 |
|---|---|
| Last Seen: | October 23, 2024 |
| OS(es) Affected: | Windows |
It seems that a group of cybercriminals is planning the release and distribution of a new file-encryption Trojan which has been dubbed MindLost Ransomware. This threat has not found any victims yet, but cybersecurity experts detected the payment portal it will use to instruct future victims on how to pay the ransom sum. The peculiar thing is that the payment page is hosted on a free hosting provider, which could be considered a privacy flaw for the operators of this file locker. Usually, ransomware authors prefer to use TOR-based payment pages and to take all required measures to guarantee their anonymity. Unfortunately, even though they use a public free web hosting, MindLost Ransomware's authors are not identified.
MindLost Authors Might Steal Credit Card Details
Another privacy issue that MindLost Ransomware's authors seem to have is that they don't want to receive the ransom payments in the form of a cryptocurrency transaction. Instead, their payment page asks the victim to enter their credit card information, and this is something that no one should agree to do! By entering such sensitive data in MindLost Ransomware's website, you might lose all of the money stored in the card, since the attackers are likely to charge more than what they promised initially.
MindLost Might Target a Peculiar Group of Users
The targets of MindLost Ransomware are likely to be software are likely to be software developers. The reason for this is the list of files that the file locker is meant to encrypt. Often, we see ransomware focusing on documents, spreadsheets, and similar office files that are likely to contain important data. However, the targets of MindLost Ransomware are entirely different – it looks for files associated with particular programming languages like Python, C++, JAVA, PHP, and others.
Unfortunately, while MindLost Ransomware's payment page might look like a scam, its attack is as real as it gets. For the moment, there isn't free decryption software capable of fixing the damage caused by MindLost Ransomware's attack, so the victims of this threat might need to look for alternative solutions which do not involve sending money to cybercrooks. While the recovery of the data might be impossible for now, victims can still eliminate MindLost Ransomware to prevent it from causing more damage. The best way to do this is to use a credible and up-to-date antivirus scanner that will identify and eradicate the ransomware's components.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.