Home Malware Programs Ransomware VIAGRA Ransomware

VIAGRA Ransomware

Posted: August 21, 2019

The VIAGRA Ransomware is a file-locking Trojan that's capable of preventing multiple formats of media from opening. Symptoms of its attacks include adding extensions to your files and creating HTML-based messages with ransom demands. Users should avoid paying such ransoms, if possible, use anti-malware products for eliminating the VIAGRA Ransomware, and recover their work from any available backups.

A Look at Exceptionally Patient Extortionists

File-locking Trojan businesses can run on an incredibly rapid timeline, which is exemplified by the pacing of the STOP Ransomware family's version releases, as well as the timer-oriented antics of Jthe Jigsaw Ransomware. At least one threat actor is, however, taking a more long-term view. The VIAGRA Ransomware is an otherwise 'normal' Trojan that waits for months for its ransoms.

While malware experts have yet to triangulate any family relationship for the VIAGRA Ransomware, it runs a payload that's similar to the majority of file-locking Trojans. Its attacks include deleting the Windows Shadow Volume Copies, encrypting dozens of media formats (DOC, JPEG, MP3, XLS, ZIP, etc.), and adding an extension – currently set to 'ObcK' – into the names of encrypted media. Additionally, it delivers an HTML or Web page ransom note that identifies itself.

The message also carries other information, however. It links to a Bitcoin wallet that, so far, remains empty of ransom payments. More notably, it has a maximum deadline of three months for the money, with a rise in the cost after half that time. This deadline is much more generous than those of similar threats, which malware experts often see expecting ransoms within days, one or two wee or even hours.

Opting Out of Trojan Medical Help

Malware experts are unfamiliar with any other, file-locker Trojans that use the VIAGRA Ransomware's extension or show any notable similarity of symptoms. However, precautions for protecting one's files against the VIAGRA Ransomware are the same as with other threats of its category. Users should emphasize their backup maintenance and storage diligently for saving work that may not be decryptable by free – or any – software. A non-local save destination is preferable particularly since nearly all Trojans with encryption features include local backup-removing ones, too.

The VIAGRA Ransomware's hijacked brand name may or may not be relevant to its infection strategies. File-locking Trojans can circulate in torrents under false names (such as a fake software crack), or get their installation from criminals compromising your PC via RDP, brute-forcing logins, corrupted advertisements or e-mail spam. Since the VIAGRA Ransomware's cryptography strength is wholly unexplored, malware experts can't promise that infections will leave behind any recoverable media.

Anti-malware products may, as usual, form the final line of defense. Actively-monitoring services should remove the VIAGRA Ransomware, which is a Windows-based threat, automatically.

The VIAGRA Ransomware isn't a cure to sexual dysfunction or anything else, other than its author's possible poverty. Keeping its wallet at zero will help save both your peace of mind and your files from future attacks with the same goals in mind.

Loading...