Dharma-Boost Ransomware

Dharma-Boost Ransomware Description

The name — Dharma-Boost Ransomware — is a working title for a group of samples that are classified as slightly altered versions of the original Dharma Ransomware (a.k.a. Dharma 2017 Ransomware). As its name suggests, the Dharma-Boost Ransomware is an encryption Trojan that is very similar to other Dharma derivatives like the 'paydecryption@qq.com' Ransomware and the 'btc@fros.cc' Ransomware. The Dharma-Boost Ransomware may have entered the computers by bundling with pirated software, compromised remote desktop accounts and embedded macros in documents from your email inbox. The Dharma-Boost Ransomware was added to AV databases in the second week of October 2018 after PC users reported strange data with the '.boost' extension found on their devices. It was revealed that the Dharma-Boost Ransomware Trojan was responsible for encrypting images, video, audio, text, presentations and databases on many machines.

The Dharma-Boost Ransomware is programmed to add the '.boost' extension to the encrypted files and drop a ransom note on the desktop. Also, the file marker component included the 'boston.crypt@tuta.io' email address and a unique identifier. The rename model utilized by the Dharma-Boost Ransomware looks like this — '..[boston.crypt@tuta.io].boost.' For example, 'Aedra and Daedra.pptx' is renamed to 'Aedra and Daedra.pptx.[boston.crypt@tuta.io].boost.' The ransom note associated with the Dharma-Boost Ransomware may appear as 'FILES ENCRYPTED.txt' and offer the following text:

'all your data has been locked us
You want to return?
write email boston.crypt@tuta.io'

The Dharma-Boost Ransomware is categorized as a minor update in the line of Dharma variants. However, it is a cyber threat you will want to avoid, and you should install a trusted backup manager onto your system. Keep your backups on removable memory storage and a cloud storage service to make sure you can recover your data in case of a security breach. PC users should refrain from paying money to the people behind the Dharma Ransomware because it would only fuel the continuous development of new Dharma-based threats. PC users affected by the Dharma-Boost Ransomware should clean their machines using a reputable anti-malware service.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.