Dangerous Ransomware : A Noxious Cyber Threat
Dangerous Ransomware is identified as a nasty file-encrypting ransomware virus which was first reported by the computer users of Russia on 9th March, 2017. According to the cyber security experts, the malware arrived on the targeted machine with the help of macro-enabled documents that are usually attached to junk emails. The primary executable of this ransomware is detected as “DANGEROUS_RANSOMW.exe” which is also known as a Trojan infection. It is categorized as a mid-tier crypto-threat and present itself as a standalone project which uses exact number of codes in order to cover the pieces of open source code.
Malicious Issues Caused by Dangerous Ransomware
Dangerous Ransomware is especially developed by the team of cyber criminals in order to encode the victim's files by using AES and RSA encryption algorithms. It can encipher data stored on portable media players, networks shares, local disks and network attached storage as well. Besides, the affected system users may notice that the encoded files or data are also uploaded to their cloud drive. This usually happens due to the software, such as Dropbox, they use to keep the file synchronization.
Most importantly, the data stored on users machine is encrypted by using AES-256 encipher algorithm and the unique decryption key gets encoded with the RSA-2048 cipher which blocks the affected users from restoring their vital data and files. Dangerous Ransomware uses “myscrypt.vbs” to display a ransom notification named as “YOUR PERSONAL FILES HAS BEEN ENCRYPTED” and the note open by using “troll.txt” in the text editor. The ransom note contains only two lines which reads, “DANGEROUS_RANSOM Hacked. Please contact hackermail@someting.com”.
Ransom Fee Depends on the Quantity of Enciphered Data
Undoubtedly, the hackers instruct the victimized system users to contact them by using hackermail@something.com via email in order to get the payment related instructions. The crooks demand different amount of ransom money which is based on the size of encoded data. Besides, the Dangerous Ransomware virus redirect affected PC users to hidden web pages on TOR network. In the redirected web portals, the users may be asked to pay the hefty sum of ransom money ranging from $400 to $1300. However, the RMV security investigators do not recommend users to contact the hackers through the provided email address and never try to pay ransom fee, because they will not receive any decryption key from the cyber criminals. In such circumstances, you can delete Dangerous Ransomware from your system as soon as possible and try to restore data by using backup copies.
Trojans Distributing Dangerous Ransomware Detected as:
Win32.Trojan-Ransom.Dangerous.A
Ransom_CRYPDANGER.A
Trojan.GenericKD.4559510
FileCryptor.OAW
Win32.Trojan.Filecoder.Wtwz
Trojan.Win32.Filecoder
Trojan.Generic.D459296
W32/Filecoder.NJZ!tr
没有评论:
发表评论