Threat Database Ransomware Babyk Ransomware

Babyk Ransomware

Infosec researchers have detected new threatening ransomware named Babyk that is a variant of the previously established Babuk Locker threat. Babyk operates as a typical threat of this type - it aims to infiltrate the targeted system, initiate an encryption routine and lock the data stored there. Users will find themselves unable to access nearly all of their personal or work-related files. Each encrypted file will have '.babyk' appended to its original name as a new extension. Afterward, the threat will drop its ransom note. The ransom-demanding message will be placed in text files named 'How To Restore Your Files.txt' created in every folder containing encrypted data.

According to the ransom note, the Babyk Ransomware uses uncrackable encryption algorithms while also being capable of deleting file backups. To restore access to the files, the hackers promise to send a decoder tool if they are paid a ransom of exactly 0.006 BTC (Bitcoin). The price of the Bitcoin cryptocurrency is notoriously volatile and prone to making wild swings in either direction. Still, at the current exchange rate, the ransom demanded by Babyk Ransomware is equal to approximately $200. After completing the transaction, victims of the threat are expected to establish contact by sending a message to the 'babuckransom@tutanota.com' email address.

The full text of the note is:

'--------------- Hello ---------------

 *** By BABUCK LOCKER ***

Your computers and servers are encrypted, and backups are deleted.

We use strong encryption algorithms, so no one has yet been able to decrypt their files without our participation.

The only way to decrypt your files is to purchase a universal decoder from us, which will restore all the encrypted data and your network.

Follow our instructions below, and you will recover all your data:

1) Pay 0,006 bitcoin to 1E6cvG6iEbufvYspsDa3XQ3WJgEMvRTm9i

2) Send us message with transaction id to babuckransom@tutanota.com

3) Launch decryptor.exe, which our support will send you  through email

What guarantees?

------------------

We value our reputation. If we will not do our work and liabilities, nobody will pay us. This is not in our interests.

All our decryption software is tested by time and will decrypt all your data.

------------------

!!! DO NOT TRY TO RECOVER ANY FILES YOURSELF. WE WILL NOT BE ABLE TO RESTORE THEM!!!'

Trending

Most Viewed

Loading...