Multi-Device Licenses (Volume Discounts)

Change Region

English Português
Threat Database Ransomware Alpha865qqz Ransomware

Alpha865qqz Ransomware

By GoldSparrow in Ransomware
Translate To:
English

The Alpha865qqz Ransomware is a newly-identified ransomware threat, which was discovered in the wild by cybersecurity researchers. This threat belongs to the GlobeImposter Ransomware family.

Propagation and Encryption

Threats like the Alpha865qqz Ransomware often target a wide variety of files. With every encrypted file, the likelihood of the victim paying the ransom fee increases. This is why if the Alpha865qqz Ransomware infects your system, it will make sure to lock all your documents, spreadsheets, presentations, archives, databases, audio files, images, videos, and other files using a secure encryption algorithm. The Alpha865qqz Ransomware will make sure to mark all the encrypted files by appending a new extension to their names - '.Globeimposter-Alpha865qqz'. For example, if you named a file as 'warm-breeze.mov,' the Alpha865qqz Ransomware will rename it to 'warm-breeze.mov.Globeimposter-Alpha865qqz.' It is not known how is the Alpha865qqz Ransomware being spread exactly. It is likely that the attackers are using several distribution methods such as:

  • Phishing emails that contain a bogus link or a corrupted attached file.
  • Torrent trackers.
  • Corrupted advertisements online.
  • Fraudulent social media pages and profiles.
  • Fake software updates or downloads

The Ransom Note

When the Alpha865qqz Ransomware has encrypted all the targeted files, it will proceed with the attack by placing a file on the user's system. The file in question contains a message from the authors of the Alpha865qqz Ransomware. The name of the file is 'HOW TO BACK YOUR FILES.exe.' In the note, the perpetrators of the attack ask to be contacted via email – ‘China.Helper@aol.com.' They ask the user to send them an email that contains their unique victim ID alongside an encrypted file. The attackers warn users against trying to decrypt their data using third-party utilities. There is no disclosure of the ransom fee, but it is likely that the attackers only will disclose it once the user contacts them via email.

It is extremely risky to trust the claims of cybercriminals. You may be left with your hands empty even if you pay the ransom fee demanded by the creators of the Alpha865qqz Ransomware. It advised considering obtaining a genuine, up-to-date anti-virus software suite that will detect and eliminate the Alpha865qqz Ransomware from your PC quickly and safely.

Trending

Most Viewed

Loading...