Symantec found a new crypto trojan ransomware that encrypts the files and lock the computer

Please Subscribe to our YouTube Channel

crypto trojan ransomware

Symantec found a new crypto trojan ransomware ((Trojan.Cryptolocker.S) that encrypts the system file and lock the computer. Once encrypted, it asks for the key to unlock it, and you can’t unlock it until you have the key. The attack screen is styled with a famous TV Show theme Breaking Bad.

Where does it come from?

This crypto trojan ransomware reaches the users’ computer through a zip archive, and this zip archive shows the name of renowned courier companies to make the user think it is not spam or junk. This Zip file holds a malicious file ‘PENALTY.VBS’ (VBS.Downloader.Trojan), and when it is executed it opens a legitimate PDF file, but while the user is busy checking the file it downloads Crypto Trojan Ransomware, and then it encrypts the files of the computer and locks it with a key. Now you can not get access unless you have the key.

Who are affected and Why does it encrypts the file and lock it?

This trojan virus only affects the Windows computer, and as for now Only Australian users have been found affected. After encrypting the files, it asks you to pay  AU$ 450, and also warns that if you fail to pay that amount in specified time, you will have to pay AU$ 1000 later. They also provides link how to buy bitcoin so that they can pay the ransom fee.

crypto trojan ransomware image

What files get affected by Crypto Trojan Ransomware?

Symantec has given the list of file types with their extensions that gets affected by the ransomware virus. Here you are:

  • .ai
  • .crt, .csv
  • .db, .doc, .docm, .docx, .dotx
  • .gif
  • .jpeg, .jpg
  • .lnk
  • .mp3, .msi
  • .ods, .one, .ost
  • .p12, .pdf, .pem, .pps, .ppsx, .ppt, .pptx, .psd, .pst, .pub
  • .rar, .raw, .rtf
  • .tif, .txt
  • .vsdx
  • .wma
  • .xls, .xlsm, .xlsx, .xml
  • .zip

 

Well, Symantec has not given any solution once you get affected, but they said that Symantec or Norton customers are protected. So if you are one of them, you should not get worried.