Home Malware Programs Ransomware yG Ransomware

yG Ransomware

Posted: May 13, 2019

The yG Ransomware is a new variation of the Dharma Ransomware and, sadly, it falls into the category of ransomware that is impossible to decrypt for free. While some old versions of the Dharma file-locker are decryptable, the same cannot be said about new variants like this one. If you are a victim of the yG Ransomware, then we suggest that you look into alternative data recovery options that do not require you to send money to the cybercriminals behind this project.

Users may get infected with the yG Ransomware if they end up opening a corrupted file attachment that was sent to them by the file-locker authors. These email attachments may often be accompanied by a message that has been designed to look as if it was sent out by a legitimate company or institution, therefore making it more likely that the target will trust its contents. Sadly, the damage that the yG Ransomware causes is difficult to mitigate – this file-encryption Trojan encrypts a rich variety of file formats, therefore prohibiting the victim from accessing their contents. It also marks the names of the locked files by adding the extension ‘.id-.[sysadmin@mail.fr].yG.’

The yG Ransomware also is likely to leave a ransom note that tells you to contact sysadmin@mail.fr and follow the instructions of the perpetrators to get your files back. These instructions, however, will advise you to send money to the Bitcoin wallet of the yG Ransomware’s authors – an offer that you should not accept certainly due to the risk of being tricked.

Using an anti-virus product to remove the yG Ransomware is the first step towards recovery – however, do note that this will not undo the damage done to your files. After the yG Ransomware has been fully eliminated, you can try using 3rd-party data recovery tools that might manage to get some of your files back.

Related Posts

Loading...