Threat Database Ransomware BitCrypt Ransomware

BitCrypt Ransomware

By GoldSparrow in Ransomware

BitCrypt Ransomware Image

The BitCrypt Ransomware is a ransomware that has been associated with threats designed to collect Bitcoins from its victims. The BitCrypt Ransomware encrypts the victims' files and demands payment in Bitcoin. However, unknown to the BitCrypt Ransomware's victims, their Bitcoin wallets may already have been cleaned out by a threat associated with the BitCrypt Ransomware. In fact, the BitCrypt Ransomware infection is distributed as a Trojan infection specifically designed to empty the victims' Bitcoin wallets. It is important to understand that ransomware infections like the BitCrypt Ransomware are not rare and that, in fact, they have increased substantially in number in recent years. PC security researchers first observed variants of the BitCrypt Ransomware in February of 2014. It is likely that the BitCrypt Ransomware was created following the success of the Cryptorbit Ransomware, a threat that was highly successful, infecting a quarter of a million computers in the period from October to December of 2013.

Even on a Safe Your Bitcoin Wallets will not be Protected from the BitCrypt Ransomware

The BitCrypt Ransomware's attack is very similar to the one used by the Cryptolocker Ransomware. The BitCrypt Ransomware will encrypt a large variety of files on the victim's computers, ranging from office suite documents to pictures. The BitCrypt Ransomware is highly effective because the BitCrypt Ransomware targets victims' personal and professional files, which is particularly effective if the victim does not have an external backup. Initial variants of the BitCrypt Ransomware claimed to use RSA-1024 encryption, which is particularly strong. However, malware researchers uncovered flaws in the way it was used, meaning that they were able to release security software capable of decrypting infected files. Unfortunately, newer versions of the BitCrypt Ransomware use a strong encryption method, adding the extension .bitcrypt2 to affected files. The BitCrypt Ransomware can display a ransom note in ten languages, including English, French, German, Russian, Italian, Spanish, Portuguese, Japanese, Chinese and Arabic, meaning that the BitCrypt Ransomware is meant for worldwide distribution.

As part of its attack, the BitCrypt Ransomware changes the victim's desktop image. The BitCrypt Ransomware also leads victims to a text file containing ransom payment instructions. The BitCrypt Ransomware's ransom consists in .4 Bitcoins, which is currently about $230 USD. Unfortunately, the BitCrypt Ransomware is also coupled with threats designed to get the victim's entire Bitcoin wallet, making the double attack more effective.

SpyHunter Detects & Remove BitCrypt Ransomware

File System Details

BitCrypt Ransomware may create the following file(s):
# File Name MD5 Detections
1. Bitcrypt.txt
2. f2dfa6a0bc275a78d76f7f6c123e4d34 f2dfa6a0bc275a78d76f7f6c123e4d34 0

Related Posts


Most Viewed