Recommended Posts

Hi,

 

since yesterday we've been infected by a ransomware with file extension *.encrypted.

I've tried to find the name of this ransomware with the software ID Ransomeware" but it return that it is an unknow one.

How could I do ?

Any help will be more than appreciate.

Rgds

 

Share this post


Link to post
Share on other sites

Please attach the original file of ransom note and several encrypted files to your message so that one of our experts can examine them.

Share this post


Link to post
Share on other sites

We know which ransomware it is, but the HOW_TO_RECOVER_DATA.html file is corrupt.

You must first place it in a zip archive, and then attach it to a new message.
After that, the identification will be accurate.

Share this post


Link to post
Share on other sites

This is MedusaLocker Ransomware

Identification result
https://id-ransomware.malwarehunterteam.com/identify.php?case=397a7586fd127d516a33e02733b0d9e3f739f9c5

There are several similar ransomware that copy elements from others in order to confuse identification, scare victims and mislead researchers.
In most cases, the service ID Ransomware accurately determines the encryptor that encrypted the files.

First, they used a different note design, then they took what you see, from other ransomware. It is possible that they are even familiar and actively collaborate.

Support and Help Topic >>

 

 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.