Threat Database Ransomware [].cry Ransomware

[].cry Ransomware

By GoldSparrow in Ransomware

Recently, cybersecurity experts uncovered the [].cry Ransomware – a new piece of ransomware circulating the Web. When they dissected the threat, it became evident that the [].cry Ransomware is a variant of the Dharma Ransomware (also known as the Crysis Ransomware).

Malware researchers speculate that the propagation methods of the [].cry Ransomware may include bogus software updates, spam email campaigns and infected pirated content. Once it has gained access to the victim's PC, this file-locking Trojan would scan the system for the files it is meant to lock. After the [].cry Ransomware has located these files, it will encrypt them. When the [].cry Ransomware encrypts a file, it changes its file name. Just like most ransomware threats, which belong to the Dharma Ransomware family, the [].cry Ransomware also follows the same pattern when renaming the affected files - '.id-.[].cry.' The next step of the attack is dropping the ransom note. Within the note, there are not many details or useful information provided by the attackers. The only info you will receive is their email address – '' The attackers would expect you to email them and wait to receive further instructions and details such as what the expected ransom fee would be.

However, we would urge you to resist this and avoid contacting cyber crooks like the ones behind the [].cry Ransomware. Such individuals are known to lure their victims with promises and guarantees but are rarely known to deliver on those. It is understandable that cybercriminals are not known for their honesty, and there is no way to hold them responsible if they take your money but do not provide you with the decryption tool promised. This is why it is better to download and install a reputable anti-malware application and use it to clean your PC of the [].cry Ransomware.


Most Viewed