2016: Cryptolocker virus is as active as on its day of release

June 16, 2016

2016: Cryptolocker virus is as active as on its day of release
CryptoLocker is a malicious cyber threat, which is categorized as ransomware. This threat was detected several years ago, but there is no sign that it is planning to stop its activity and let other virus dominate. You can still download Cryptolocker without expecting this because the main way used to spread it relies on seemingly harmless email messages. Once it attacks the target PC system, it encrypts victim’s files and displays a ransom note, which is displayed below. We should add that Cryptolocker is the first ransomware which started using encryption strategy for trying to swindle people’s money. No matter that it belongs to the same category as FBI virus, Police Central e-crime Unit virus or Department of Justice virus, this virus tries to convince its victims that they have to pay a ransom by encrypting their personal files. Cryptolocker is the file-encrypting ransomware, so it uses asymmetric encryption for locking these and similar files:

3fr, accdb, ai, arw, bay, cdr, cer, cr2, crt, crw, dbf, dcr, der, dng, doc, docm, docx, dwg, dxf, dxg, eps, erf, indd, jpe, jpg, kdc, mdb, mdf, mef, mrw, nef, nrw, odb, odm, odp, ods, odt, orf, p12, p7b, p7c, pdd, pef, pem, pfx, ppt, pptm, pptx, psd, pst, ptx, r3d, raf, raw, rtf, rw2, rwl, srf, srw, wb2, wpd, wps, xlk, xls, xlsb, xlsm, xlsx.

As you can see, this list is full of widely used files names, such as doc, xls and similar. In order to restore them, it asks to pay a ransom via Moneypak, Ukash, cashU, or Bitcoin. Typically, this threat asks from $100 to $500, but there is no guarantee that this amount of money won’t be increased in the nearest future. According to the warning message, which is typically displayed by this threat, people have only a certain amount of time to pay a ransom and recover the connection to their files. Fortunately, Cryptolocker can no do harm to those who have been backing up their data and making extra copies of their files. If you have copies of your photos, business documents, and other files, you don’t need to pay a ransom. You just need to remove this ransomware from your computer and prevent the additional damage. For Cryptolocker removal, we highly recommend using Reimage, which has been showing great results when eliminating files of this virus. For restoring your files, you should try R-Studio or Photorec.


Leave a Reply

You must be logged in to post a comment.