By GoldSparrow in Ransomware

Threat Scorecard

Threat Level: 80 % (High)
Infected Computers: 7
First Seen: January 23, 2017
Last Seen: April 24, 2020
OS(es) Affected: Windows

The DNRansomware is a ransomware Trojan that is used to demand payments from computer users by taking their data hostage. PC security researchers, fortunately, have uncovered the decryption method that can allow computer users to recover from the DNRansomware attacks. The most common way of distributing the DNRansomware is through corrupted spam email attachments. Because of this, precaution when handling this data can be one of the main ways of preventing the DNRansomware infections.

Unfolding the DNRansomware Infection

The DNRansomware displays a lock screen that alerts the victim of the infection. The DNRansomware bills itself as an 'extremely powerful new RIJNDAEL encryption' and demands a ransom of 0.5 BitCoin (approximately $460 USD at the current exchange rate). PC security analysts strongly advise ignoring the DNRansomware's instructions. It is possible to recover from the DNRansomware infection by typing the string 83KYG9NW-3K39V-2T3HJ-93F3Q-GT into the password field and clicking on the button marked 'Decrypt!' This will recover all the files affected by the DNRansomware attack and allow computer users to use their computers as normal. However, once this action has been taken, PC security researchers still recommend that computer users use a reliable security program to scan all drives and remove any traces of the DNRansomware from the infected computer. This can help prevent further problems down the line. It can also ensure that computer users catch any other threats that may have been installed at the same time as the DNRansomware on their computers.

Preventing the DNRansomware Infections

The DNRansomware is spread using typical ransomware distribution methods, such as the use of corrupted email attachments, exploit kits used on corrupted Web pages, and fake files distributed on file sharing networks. Because of this, the first line of defense when it comes to preventing the DNRansomware attacks is learning how to spot these hoaxes in the wild, avoiding high-risk situations online, and not falling for social engineering schemes. However, despite how many precautions one takes, it is not always possible to prevent infections. Because of this, computer users should use an up-to-date security program to intercept any possible infections before they cause too much damage and help remove any threat that has been installed. In the case of ransomware Trojans, it is crucial also to have backups of all files. This is already necessary to prevent any disaster, from a failing hard drive to a possible mechanical issue with the affected computer. In the case of ransomware, which encrypts the victim's files, being able to restore the affected files from a backup nullifies the ransomware attack completely, making computer users invulnerable to the DNRansomware and other ransomware Trojans effectively.

Dealing with the DNRansomware Infection

Although in many cases of encryption ransomware infections it is not possible to recover the affected files, this is not the case with the DNRansomware. Computer users can restore their files and regain control of the infected computer after a DNRansomware infection. PC security researchers suggest following the instructions below:

  1. In the case of the DNRansomware, using the password printed above will allow computer users to unlock the affected computer and restore access to the affected files. However, the recovery process does not stop there; PC users should ensure that the DNRansomware was not accompanied by another infection or it does not resurface on the affected computer.
  2. Because of this, PC security researchers advise using a reliable security program that is fully up-to-date to remove the DNRansomware infection itself once access has been restored to the affected computer. PC security analysts recommend performing a thorough scan of all local drives, as well as removable memory devices and shared directories.
  3. Precautions should be taken to ensure that future infections do not occur, including the establishment of a backup system and the installation of reliable anti-malware software.


Most Viewed