DumbStackz 勒索软件

信息安全研究人员在分析潜在恶意软件威胁时发现了 DumbStackz。DumbStackz 专门用于加密受感染设备上的大量文件，然后索要赎金以解密。

激活后，该勒索软件会加密文件并在文件名后附加“.DumbStackz”扩展名。例如，名为“1.doc”的文件将显示为“1.doc.DumbStackz”，“2.pdf”将显示为“2.pdf.DumbStackz”，所有受影响的文件均如此。

加密过程结束后，DumbStackz 会更改桌面壁纸，并在名为“read_it.txt”的文本文件中生成勒索信。此外，研究人员还发现，这种恶意软件源自Chaos Ransomware家族。

DumbStackz 勒索软件导致大量文件无法使用

DumbStackz 的消息通知受害者，他们的文件已被锁定或加密，解锁需要支付赎金，具体来说是 0.001 BTC（比特币加密货币）。根据当前的比特币汇率，这笔钱约相当于 60 美元，但必须注意的是，汇率会不断波动。

受害者付款后，会得到解密工具。如果两天内未满足这些要求，受影响的文件将被删除。

信息安全专家警告称，如果没有网络犯罪分子的介入，解密通常是不可能的。此外，即使付款后，这些犯罪分子也经常无法提供解密密钥或软件。因此，强烈建议不要满足赎金要求，因为无法保证数据恢复，付款只会使这种非法活动持续下去。

虽然从操作系统中删除 DumbStackz 勒索软件可以防止进一步加密，但不幸的是，它无法恢复已经被破坏的文件。

确保您的设备和数据受到足够的保护，免受恶意软件攻击

要确保设备和数据得到充分保护，免受恶意软件攻击，需要实施一整套安全措施。以下是有关用户如何实现此目标的详细指南：

• 安装和维护安全软件：首先在所有设备（包括计算机、智能手机和平板电脑）上安装信誉良好的反恶意软件。

通过遵循这些全面的安全措施，用户可以显著降低恶意软件攻击的风险，并保护他们的设备和数据免受损害。

DumbStackz 勒索软件释放的赎金通知显示以下文字：

'Sht well your files are locked. Lmao, well, sorry to say you won't be able to get them back without paying a fee. Unless you don't care about your files, I would encourage you to pay. The fee will cost you 0.001 bitcoin. Making this sht affordable. Sorry to cause you stress. Now, if you want to make this quick and simple, let's cut to the chase.

Step 1: Buy the bitcoin. Unless you own bitcoin, you will obviously need to buy it. Well, where the f*ck do I buy bitcoin?? You may be asking yourself that question. Luckily, there are many places to buy bitcoin. Such as apps like Coinbase, Crypto.com, Changelly Kraken, etc. There are also crypto ATMs to find one near you, go to coinflip.tech and enter a zip code. Or find others.

Step 2: Create a Bitcoin wallet. If you are on a mobile device, I recommend downloading Cake Wallet or Trust Wallet. They are wallets that hold many different crypto currencies. Such as Bitcoin. And if you are using a Windows computer, you can use the Wassabi wallet. It is a great and fast wallet to set up. From there, you can send the address you are sending the 0.001 bitcoin to, which is below this line. Or scan the QR code that is shown in my wallpaper. (My Bitcoin Address): 17CqMQFeuB3NTzJ2X28tfRmWaPyPQgvoHV

Step 3. Once you have sent the bitcoin successfully and it confirms through the blockchain, don't hesitate to contact me. I will provide you with the password to recover all of your files. It is another piece of software, so please disable virus and threat protection to allow it to decrypt successfully. Contact Me Once Paid: whosdumb_stackz@proton.me (This is an email, so you will need to write to me by email.)

Your files will be automatically deleted after 2 days from when this ransomware was installed. Do not try after 2 days because you will just be losing your money for nothing. Attempting to reset the computer will also delete all of your files, which you can try if you want.

PAY EXACTLY 0.001 BITCOIN OR YOUR FILES WILL NOT BE RELEASED TO YOU. IF ONE OF MY WORKERS IS THE ONE WHO GAVE YOU THIS RANSOMWARE, THEY WILL WAIT FOR THE PAYMENT TO GO THROUGH, AND THEY WILL GIVE YOU THE DECRYPTER. DO NOT TRY NEGOTIATING, OR ME OR MY WORKERS WILL BLOCK YOU. THE AMOUNT WILL NEED TO BE 0.001 BITCOIN, EVEN WITH THE FEES. MAKE SURE TO GET SOME EXTRA BITCOIN FOR EASY PAYMENT.

Again, if you have any issues or concerns, please contact me at whosdumb_stackz@proton.me (This is an email, so you will need to write to me by email.)

Bitcoin Address Again: 17CqMQFeuB3NTzJ2X28tfRmWaPyPQgvoHV'