Nols Ransomware

The Nols Ransomware is a file-locking Trojan that can block your digital media. Its attacks use encryption for turning your work into non-opening versions of themselves, which it accompanies with other symptoms, such as blocking security websites and removing backups. Let your anti-malware services handle deleting the Nols Ransomware and store externally-secured backups for any recovery needs.

The Trojan Family that's the Antithesis of Its Name

Although some Trojans, such as the Jigsaw Ransomware, tailor their payloads' behavior for meshing well with their chosen themes and brands, others are more arbitrary and self-contradictory. Out of the Ransomware-as-a-Service entities that are active in 2019, the STOP Ransomware is, perhaps, the most obvious example of the latter. Far from stopping its distribution at any point, new versions appear routinely, such as the fresh-from-production the Nols Ransomware.

This Trojan targets Windows environments with an encryption-centric payload that turns the victim's files into non-opening ones. It can harm, theoretically, any format of data, but malware experts consistently find the Nols Ransomware and its family damaging documents, images, archives, and other commonplace media. The attack also comes with a filename-changing function, which will append a different extension per Trojan – such as 'nols' – onto the end of the name.

Although the main encryption algorithm in AES is consistent, the Nols Ransomware can use an external, secondary RSA sequence for securing it. This feature depends on an Internet connection; users who can stop the Nols Ransomware from contacting its server before the attack finishes will have a better chance of recovering any files with public decryption software. Unfortunately, new versions of the Nols Ransomware's family (see also: the Krusop Ransomware, the Meds Ransomware, the Reco Ransomware, the Werd Ransomware, et al.) are not, generally, unlockable by freeware after an online encrypting routine.