Posted: December 11, 2016
Threat Metric
Threat Level: 10/10
Infected PCs 0 Ransomware Description

The '' Ransomware is a file-encrypting Trojan that locks your files with a cipher and holds the key to decoding them for a ransom payment. Backing up your hard drive in multiple locations that you update regularly is essential to avoiding any need to pay for decryption help. Preferably, most anti-malware programs also may block and delete the '' Ransomware during its attempt to gain access to your PC in the first place.

A Premium Lock on Your Hard Drive

Although a majority of file-encrypting threats prefer using any of several bit-sizes of AES-based algorithms, the Globe Ransomware is a stand-out that continues using Blowfish ciphers to block its victims' data. Now, malware researchers are seeing another potential member of that family: the '' Ransomware. This Trojan most likely is targeting Spanish speakers in relevant regions of South America or Europe.

The '' Ransomware's use of the Blowfish algorithm changes little about its payload's practical impact and symptoms. Malware researchers recommend looking for the following issues:

  • The '' Ransomware scans for files, basing any targets on both their formats (such as DOC or JPG) and the directory locations potentially. Then, they're encoded to block you from opening them with any associated applications.
  • The files affected by the previous attack may have their names modified. Malware researchers can't confirm all filename changes made by this threat but changes to the extension are highly likely.
  • The '' Ransomware also may generate advanced HTML pages for the encrypted folders or your desktop. These pages contain ransom instructions for paying the Trojan's threat actor to decode your files.

Unlike some threats with similar feature sets, the '' Ransomware doesn't appear to use a 'lock-screen' style attack that blocks you from opening other programs or using your desktop.

Free File Recovery Versus Expensive Trojans

Although the '' Ransomware's threat actors profit from forcing victims into paying out of a chance of getting their content decrypted, paying isn't necessarily a sure means of recovering the damaged files. Malware experts see far better rates of success with restoring encrypted content from unaffected backups, especially ones saved to uninfected locations, such as peripheral devices. General decryption tools available for free on the Web also may be able to decode the '' Ransomware's payload.

The '' Ransomware may be disseminating itself through spam e-mails, bundling with other software, or fake downloads, such as pirated game installers or cracks. Scanning incoming downloads with anti-malware products before opening them can delete the '' Ransomware and deny it a chance to attack your files. Although malware analysts always encourage preventative security strategies, payloads like the '' Ransomware's display the potentially irreversible nature of a Trojan's attacks.

The '' Ransomware's family is not yet fully verifiable as being related to the Globe Ransomware. Whether or not this file-encoding Trojan is a direct relative of previous ones, it shows that con artists aren't interested in slowing the pace by which they create new problems for the average PC user.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Ransomware may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Home Malware Programs Ransomware Ransomware

Leave a Reply

Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter. If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.