Rectot Ransomware

The Rectot Ransomware is a file-encryption Trojan that needs just a few minutes to cause a lot of damage to the file system of its victims. This file-locker is based on the source code of the STOP Ransomware, and this is likely to mean that it will not be compatible with free decryption software. Its authors may opt to use a broad range of methods to deliver the threatening program to their victims – fake email attachments, fake software updates, and downloads or pirated software are just some of the options they may opt to utilize.

If the Rectot Ransomware is not stopped by an anti-virus program, it may get to work and encrypt the contents of images, videos, archives, audio, and other popular file formats immediately. Whenever it locks a file, it will add the ‘.rectot’ extension after the original filename (e.g. ‘spreadsheet.xlsx’ to ‘spreadsheet.xlsx.rectot.’)

Of course, the crooks behind the Rectot Ransomware want to make money, and this is why they supply their victims with a ransom note that can be viewed in the file ‘_readme.txt.’ It tells the victim to message gorentos@bitmessage.ch for further details on the steps they need to complete if they wish to get file decryption assistance. Unfortunately, the demands of the attackers are not acceptable – they want to be paid via Bitcoin and promise to provide a decryptor in return. Needless to say, you should not trust the anonymous hackers behind this project since they are likely to try to trick you out of your money.

If you are dealing with the consequences of the Rectot Ransomware’s attack, then you should remove the file-locker with a suitable anti-virus program. When you do this, you will need to look into data recovery options that do not involve sending money to hackers.