Threat Database Ransomware Banta Ransomware

Banta Ransomware

By GoldSparrow in Ransomware

It appears that an increasing number of cybercriminals are trying their luck in creating various ransomware threats. This is likely because spreading data-locking Trojans is perceived as a quick way to make a buck on the backs of innocent users.

One of the newest file-encrypting Trojans that has been plaguing the Web recently is the Banta Ransomware. Once researchers discovered this ransomware threat, they dissected it and found out that it is a variant of the notorious Phobos Ransomware. However, they have not been capable of determining the propagation methods employed in the spreading of this nasty Trojan. It is likely that the most common techniques may be at play in this case too, namely spam emails containing macro-laced attachments, bogus copies of popular software tools and fraudulent application updates. When the Banta Ransomware manages to infiltrate your PC successfully, it will begin a scan immediately. This scan is performed so that the Banta Ransomware can determine the locations of all files, which will be marked for encryption. Then, the Banta Ransomware will start locking all the targeted data. After undergoing the encryption process of the Banta Ransomware, the files will have their names altered. This ransomware threat adds a .id[].[phobos_helper@xmpp.jp].banta' extension at the end of the filename of each affected file.

Then, the Banta Ransomware drops a ransom note in the shape of a '.hta' file. In the ransom note, the attackers fail to mention a specific ransom fee that will be demanded from the victim, but they make it very clear that the fee must be paid in Bitcoin. The attackers provide instructions on how to obtain Bitcoin for the users who are not familiar. The authors of the Banta Ransomware offer the user to unlock more than five files for free, provided that the total size does not surpass 10MB and that the files do not contain important information (excel sheets, databases, backups, etc.).

You should keep your distance from cybercriminals as nothing good comes out of attempting any sort of negotiations with them. Instead, download and install a reputable anti-virus tool and remove the Banta Ransomware from your system.

Trending

Most Viewed

Loading...