![]() ![]() “This is one of the most destructive malware I have seen till date”, says Sanjay Katkar, CTO of India’s leading antivirus software Quick Heal. ![]() Hackers behind this malware are able to avoid the trace back by using digital cash systems like Bitcoins and MoneyPack where the payments can be anonymous. If the amount is not paid it destroys the private key and your encrypted data is locked forever with no way to recover it. The malware gives a deadline of 100 hours to pay the ransom and get the private key to decrypt the data. Since the decryption key is not stored on the infected computer, it is v ery difficult to decrypt the data encrypted by this malware. The malware stores the private key on its command and control server which is not known. It is not possible to decrypt the files encrypted in this way until one has access to the private key. The message also displays a time limit within which the payment must be made.ĬryptoLocker uses unique RSA encryption method of public private key pair to encrypt each of its victim’s data. The ransomware then pops up a message, like the once shown below, in which it demands the victim to pay up $300 (currently) to buy a private key to decrypt the files. Thereafter, it encrypts these files, converting them into an unreadable form. These include images, videos, documents, presentations and spreadsheets. Once the victim opens such email attachments, CryptoLocker gets installed and starts scanning the hard disk for all kinds of documents. This type of malware is popularly known a s ransom ware and is spread using social engineering tricks especially via email such as fake FedEx or UPS tracking notifications with attachments. This malware makes demand of 300 USD through prepaid card services like UKash, Bitcoin or MoneyPak. In early September 2013, Quick Heal Threat Research and Response lab received several incidents about a malware that once executed encrypts files in the victim’s computer, and demands a certain ransom for decryption. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |