AlphaBetaCrypt Ransomware
Among the most popular threats online are data-locking Trojans. The popularity of these malware kind stems from the fact that any rookie cyber crook can build a threat using a ransomware building kit and quickly start generating cash. The AlphaBetaCrypt Ransomware is one of the newest threats of this type. This threat operates in a similar manner to most file-encrypting Trojans - compromises a user's system, locks their files, and then demands them to pay a ransom fee while promising to provide them with a decryption key.
Propagation and Encryption
Although there is no confirmation regarding the propagation method used in the distribution of the AlphaBetaCrypt Ransomware, there are some speculations. Malware researchers think that the likely infection vectors may include bogus application updates, malvertising campaigns, spam emails containing macro-laced attachments, torrent trackers, fraudulent pirated versions of popular software, and media, etc.
If the AlphaBetaCrypt Ransomware manages to infiltrate your computer, it will scan the data that is present on your device. Be sure that all commonly found file types will be swiftly locked by the AlphaBetaCrypt Ransomware. Files such as .mp3, .mp4, .jpeg, .jpg, .png, .pdf, .doc, .docx, .rar, .xls, .xlsx, .mov will be locked with the help of a secure encryption algorithm. All the files that the AlphaBetaCrypt Ransomware locks will also have changed names after the encryption process is completed because this Trojan appends a '.CRYPT' extension to the affected files' names. This means that a file that was originally named 'brick-wall.png' will have its name changed to 'brick-wall.png.CRYPT.'
The Ransom Note
The AlphaBetaCrypt Ransomware will also make sure to drop a ransom note on the user's desktop. The filename of the ransom note is 'README_README_README_README.txt.' Authors of data-encrypting Trojans often use all caps and repetition when naming the ransom note, as this makes it more likely to attract the attention of the victim. In the note, the creators of the AlphaBetaCrypt Ransomware state that they would like to be contacted via email - 'supalpha@cock.li' and 'alphasup@mail.ee.' They also go on to warn the users that they should prevent using any free decryption tools, as this will damage their data. The authors of the AlphaBetaCrypt Ransomware do not mention a specific sum in regard to the ransom fee, but rest assured that they will require no less than several hundred dollars.
It is always best to avoid communicating with cyber crooks. Often, users who pay up report that they had not received the promised decryption tool. It is not wise to trust the promises of cybercriminals. Instead, you should download and install a legitimate anti-malware suite that will help you remove the AlphaBetaCrypt Ransomware from your computer safely.
