DumbStackz 勒索軟體
資訊安全研究人員在分析潛在惡意軟體威脅時發現了 DumbStackz。 DumbStackz 專門設計用於加密受感染設備上的大量文件,並隨後要求支付贖金以進行解密。
啟動後,該勒索軟體會將檔案加密,並在檔案名稱後面附加「.DumbStackz」副檔名。例如,對於所有受影響的文件,名為“1.doc”的文件將顯示為“1.doc.DumbStackz”,“2.pdf”將顯示為“2.pdf.DumbStackz”,依此類推。
加密過程完成後,DumbStackz 會更改桌面桌布並在名為「read_it.txt」的文字檔案中產生勒索字條。此外,研究人員還發現該惡意軟體源自Chaos Ransomware家族。
DumbStackz 勒索軟體導致大量檔案無法使用
DumbStackz 的訊息通知受害者他們的文件已被鎖定或加密,解鎖它們需要支付贖金,特別是 0.001 BTC(比特幣加密貨幣)。根據目前的比特幣匯率,這筆金額大約相當於 60 美元,但需要注意的是,匯率會不斷波動。
付款後,受害者確信將獲得解密工具。兩天內未能遵守這些要求將導致受影響的文件被刪除。
資訊安全專家警告說,如果沒有網路犯罪分子的干預,解密通常是不可能的。此外,即使在付款後,這些犯罪分子也經常無法交付解密金鑰或軟體。因此,強烈建議不要滿足贖金要求,因為無法保證資料恢復,而且付款只會使這種非法活動永久化。
雖然從作業系統中刪除 DumbStackz 勒索軟體可以防止進一步加密,但遺憾的是,它無法恢復已受到損害的檔案。
確保您的裝置和資料具有足夠的保護,免受惡意軟體攻擊
確保設備和資料得到充分保護,免受惡意軟體攻擊需要實施一套全面的安全措施。以下是有關用戶如何實現此目標的詳細指南:
- 安裝和維護安全軟體:首先在所有裝置上安裝信譽良好的反惡意軟體,包括電腦、智慧型手機和平板電腦。
透過遵循這些全面的安全措施,使用者可以大幅降低惡意軟體攻擊的風險,並保護其裝置和資料免受損害。
DumbStackz 勒索軟體所投放的勒索字條顯示以下文字:
'Sht well your files are locked. Lmao, well, sorry to say you won't be able to get them back without paying a fee. Unless you don't care about your files, I would encourage you to pay. The fee will cost you 0.001 bitcoin. Making this sht affordable. Sorry to cause you stress. Now, if you want to make this quick and simple, let's cut to the chase.
Step 1: Buy the bitcoin. Unless you own bitcoin, you will obviously need to buy it. Well, where the f*ck do I buy bitcoin?? You may be asking yourself that question. Luckily, there are many places to buy bitcoin. Such as apps like Coinbase, Crypto.com, Changelly Kraken, etc. There are also crypto ATMs to find one near you, go to coinflip.tech and enter a zip code. Or find others.
Step 2: Create a Bitcoin wallet. If you are on a mobile device, I recommend downloading Cake Wallet or Trust Wallet. They are wallets that hold many different crypto currencies. Such as Bitcoin. And if you are using a Windows computer, you can use the Wassabi wallet. It is a great and fast wallet to set up. From there, you can send the address you are sending the 0.001 bitcoin to, which is below this line. Or scan the QR code that is shown in my wallpaper. (My Bitcoin Address): 17CqMQFeuB3NTzJ2X28tfRmWaPyPQgvoHV
Step 3. Once you have sent the bitcoin successfully and it confirms through the blockchain, don't hesitate to contact me. I will provide you with the password to recover all of your files. It is another piece of software, so please disable virus and threat protection to allow it to decrypt successfully. Contact Me Once Paid: whosdumb_stackz@proton.me (This is an email, so you will need to write to me by email.)
Your files will be automatically deleted after 2 days from when this ransomware was installed. Do not try after 2 days because you will just be losing your money for nothing. Attempting to reset the computer will also delete all of your files, which you can try if you want.
PAY EXACTLY 0.001 BITCOIN OR YOUR FILES WILL NOT BE RELEASED TO YOU. IF ONE OF MY WORKERS IS THE ONE WHO GAVE YOU THIS RANSOMWARE, THEY WILL WAIT FOR THE PAYMENT TO GO THROUGH, AND THEY WILL GIVE YOU THE DECRYPTER. DO NOT TRY NEGOTIATING, OR ME OR MY WORKERS WILL BLOCK YOU. THE AMOUNT WILL NEED TO BE 0.001 BITCOIN, EVEN WITH THE FEES. MAKE SURE TO GET SOME EXTRA BITCOIN FOR EASY PAYMENT.
Again, if you have any issues or concerns, please contact me at whosdumb_stackz@proton.me (This is an email, so you will need to write to me by email.)
Bitcoin Address Again: 17CqMQFeuB3NTzJ2X28tfRmWaPyPQgvoHV'