Bbyy Ransomware
The infamous STOP/Djvu Ransomware family continues to serve as the base from which cybercriminals are creating more and more malware threats. One such example is the Bbyy Ransomware. The threat is yet another variant that fails to exhibit any meaningful departures from the established STOP/Djvu behavior. However, users should think that this fact makes the threat any less threatening.
When the Bbyy Ransowmare is activated on a breached device, it will scan the files stored there and encrypt nearly all of them. The targeted file types include PDFs, documents, archives, databases and more. After being encrypted, the files will no longer be useable or even accessible. The threat also will mark each impacted file by appending '.bbyy' to that file's original name. A ransom note dropped as a text file named '_readme.txt' will deliver a set of instructions to the victims of the threat.
According to the ransom-demanding message, the operators of the Bbyy Ransomware are trying to extort the sum of $980 from affected users. However, this initial ransom can be reduced by 50% to $490, if the victims manage to establish contact with the attackers within 72 hours of the ransomware infection. Furthermore, the note states that the hackers are willing to unlock a single file for free. The file can be attached to the victim's message and sent to the two email addresses found in the note - 'support@bestyourmail.ch' and 'supportsys@airmail.cc.'
The full text of Bbyy Ransomware's note is:
'ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-KXqYlvxcUy
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@bestyourmail.chReserve e-mail address to contact us:
supportsys@airmail.ccYour personal ID:'
