BKP Ransomware

Cybersecurity researchers work to discover and combat new malware tirelessly. Recently, they came across the BKP Ransomware – a data-locking Trojan, which is a variant of the infamous Dharma Ransomware. More and more cybercriminals choose to base their ransomware threats on the Dharma Ransomware likely because it has proven to be a rather propitious and efficient file-encrypting Trojan.

Propagation and Encryption

Malware experts have failed to conclude as to what is the exact infection vector being used in the propagation of the BKP Ransomware. Some believe that emails containing infected attached files, bogus software updates, and corrupted pirated applications may be among the distribution methods used by the authors of the BKP Ransomware. If the BKP Ransomware happens to infect your PC, it will star the attack by performing a scan. This is done so that the BKP Ransomware locates the files, which it was programmed to target. Then, the encryption process is triggered. The BKP Ransomware locks all the targeted files and changes their extensions. This threat adds an extension, which follows the pattern used by nearly all ransomware threats that belong to the Dharma Ransomware family - ‘.id-.[keeky@protonmail.com].BKP.’ Once your files are locked, they will no longer be usable in any manner.

The Ransom Note

The next step of the attack is the dropping of the ransom note. If the authors of the BKP Ransomware have not strayed from the path and have used the usual naming pattern of the Dharma Ransomware variants, it is more than likely that the ransom note is either named ‘info.hta’ or ‘FILES ENCRYPTED.txt.’ There is not a specific ransom fee mentioned in the note. The creators of the BKP Ransomware demand to be contacted via email at the provided email address – ‘keeky@protonmail.com.’ Protonmail is a preferred service by cybercriminals as it protects their privacy.

We recommend you strongly to stay away from cybercrooks like the authors of the BKP Ransomware. A much safer option is to look into obtaining a legitimate anti-virus suite, which will combat threats like the BKP Ransomware and keep your system safe.