Dharma-Boost Ransomware
The name — Dharma-Boost Ransomware — is a working title for a group of samples that are classified as slightly altered versions of the original Dharma Ransomware (a.k.a. Dharma 2017 Ransomware). As its name suggests, the Dharma-Boost Ransomware is an encryption Trojan that is very similar to other Dharma derivatives like the 'paydecryption@qq.com' Ransomware and the 'btc@fros.cc' Ransomware. The Dharma-Boost Ransomware may have entered the computers by bundling with pirated software, compromised remote desktop accounts and embedded macros in documents from your email inbox. The Dharma-Boost Ransomware was added to AV databases in the second week of October 2018 after PC users reported strange data with the '.boost' extension found on their devices. It was revealed that the Dharma-Boost Ransomware Trojan was responsible for encrypting images, video, audio, text, presentations and databases on many machines.
The Dharma-Boost Ransomware is programmed to add the '.boost' extension to the encrypted files and drop a ransom note on the desktop. Also, the file marker component included the 'boston.crypt@tuta.io' email address and a unique identifier. The rename model utilized by the Dharma-Boost Ransomware looks like this — '
'all your data has been locked us
You want to return?
write email boston.crypt@tuta.io'
The Dharma-Boost Ransomware is categorized as a minor update in the line of Dharma variants. However, it is a cyber threat you will want to avoid, and you should install a trusted backup manager onto your system. Keep your backups on removable memory storage and a cloud storage service to make sure you can recover your data in case of a security breach. PC users should refrain from paying money to the people behind the Dharma Ransomware because it would only fuel the continuous development of new Dharma-based threats. PC users affected by the Dharma-Boost Ransomware should clean their machines using a reputable anti-malware service.
