'.setimichas1971@protonmail.com.b4wq File Extension' Ransomware
The '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware is a ransomware Trojan that was reported in June 2018. The '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware is a variant in an existing ransomware family, with its direct predecessor known as the B2DR Ransomware. The '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware functions like most encryption ransomware Trojans, making the victim's files inaccessible and then demanding payment of a ransom in exchange for the decryption key needed to restore the affected files. Unfortunately, once the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware has encrypted the files, they are no longer recoverable. Because of this, if the victim does not have backup copies of the affected files, then the files encrypted by the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware will be lost irrevocably.
How the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware can Enter a Computer
The '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware, like many similar threats, is distributed through spam email campaigns, which will usually consist of spam email messages with corrupted file attachments. These files will often take the form of DOCX files with embedded macro scripts that download and install the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware onto the victim's computer. The body of the spam email message may use social engineering techniques to trick the victim into downloading and installing the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware onto their computs. Once the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware has been installed, it will scan the victim's computer for popular user-generated file types, which may include media files, numerous document types, and other commonly used file types, which may include the following:
.3dm, .3g2, .3gp, .7zip, .aaf, .accdb, .aep, .aepx, .aet, .ai, .aif, .as, .as3, .asf, .asp, .asx, .avi, .bmp, .c, .class, .cpp, .cs, .csv, .dat, .db, .dbf, .doc, .docb, .docm, .docx, .dot, .dotm, .dotx, .dwg, .dxf, .efx, .eps, .fla, .flv, .gif, .h, .idml, .iff, .indb, .indd, .indl, .indt, .inx, .jar, .java, .jpeg, .jpg, .js, .m3u, .m3u8, .m4u, .max, .mdb, .mid, .mkv, .mov, .mp3, .mp4, .mpa, .mpeg, .mpg, .msg, .pdb, .pdf, .php, .plb, .pmd, .png, .pot, .potm, .potx, .ppam, .ppj, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .prel, .prproj, .ps, .psd, .py, .ra, .rar, .raw, .rb, .rtf, .sdf, .sdf, .ses, .sldm, .sldx, .sql, .svg, .swf, .tif, .txt, .vcf, .vob, .wav, .wma, .wmv, .wpd, .wps, .xla, .xlam, .xll, .xlm, .xls, .xlsb, .xlsm, .xlsx, .xlt, .xltm, .xltx, .xlw, .xml, .xqx, .xqx, .zip.
The '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware will deliver a ransom note contained in a text file named 'Readme.txt.' This note contains the following text, asking the victim to contact the criminals via email:
'Your files were encrypted with AES-256.
Ask how to restore your files by email setimichas1971@protonmail.com
Use only gmail.com, yahoo.com, protonmail.com.
Messages written from other mail services we can not get.
We always respond to messages. If there is no answer within 24 hours, then write us with another email service.
[OR]
If within 24 hours you have not received a response, you need to follow the following instructions:
a) Download and install TOR browser: https://www.torproject.org/download/download-easy.html.en
b) From the TOR browser, follow the link: torbox3uiot6wchz.onion
c) Register your e-mail (Sign Up)
d) Write us on e-mail: setimichas1971@torbox3uiot6wchz.onion
ATTENTION: e-mail (setimichas1971@torbox3uiot6wchz.onion) accepts emails, only with e-mail registered in the TOR browser at torbox3uiot6wchz.onion
################################
Any actions on your part over encrypted files can damage them. Be sure to make backups!
################################
In the message write us this ID:
[redacted 0x11B bytes in base64]'
Dealing with the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware
Computer users are counseled by security experts to avoid contacting the criminals responsible for the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware. This can lead to further infections, and will not result in the return of the affected files. Computer users must back up their files on an external memory device or the cloud to ensure that the files can be recovered after a '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware attack. File backups, coupled with an effectual security program that is fully up-to-date, are the best protection against threats like the '.setimichas1971@protonmail.com.b4wq File Extension' Ransomware.
