Boooom Ransomware
The Boooom Ransomware is a malware threat created to lock the files stored on compromised computers specifically. The affected files will be encrypted with a strong algorithm and held as hostages. Victims will then be extorted for money if they want to receive the necessary decryption key that could restore their information.
The threat marks each locked file by changing that file's original name drastically. It will append to it an ID string, an email address under the control of the hackers and a new file extension. The email address is monster666@tuta.io, while the new extension is '.boooom.' Afterward, a ransom note with instructions for the victims will be delivered to the device as a text file named 'decrypt_info.txt.'
Boooom Ransomware's Demands
The note reveals that the hackers want to receive a ransom paid in bitcoins. It also leaves two communication channels that victims can use to reach the attackers. The first one is via the aforementioned 'monster666@tuta.io' email, while the second one is via Telegram.
Affected users also are told that they can send up to 2 encrypted files to be unlocked for free. However, there are a couple of requirements. The files must be less than 2 MB in total size and have one of the following file formats - doc, txt, pdf, jpeg, jpg, bmp, png and gif.
The full text of the note is:
'All your files have been encrypted due to a security problem with your PC. If you want to restore them, write us to the e-mail monster666@tuta.io
or:
write to us in telegram
hxxps://t.me/Online7_365
or:
@Online7_365
Send us this file
decrypt_info===========================
Free decryption as a guaranteeBefore paying, you can send 1-2 files for free decryption. File format: txt doc pdf jpeg jpg gif png bmp Total file size should not exceed 2 MB (without archive)
You can buy Bitcoins here: hxxps://localbitcoins.com
Or use the search how to buy Bitcoins in your country
IMPORTANT!!!
Remember that your files are encrypted and only WE can recover them!Do not try to recover yourself, as well as on third-party resources, you will lose your files and money forever!
Key Identifier:
Number of files that were processed is:
PC Hardware ID:'
