FileCry Ransomware
The FileCry Ransomware is a newly-identified data-locking Trojan. The authors of the FileCry Ransomware utilize a popular scheme used by many other cyber crooks – they are trying to impersonate the notorious WannaCryptor Ransomware. The latter is a threat that made headlines several years ago. The WannaCryptor Trojan is a severe threat with very high infection rates. However, the FileCry Ransomware is not nearly as complex or dangerous as the WannaCryptor Ransomware.
Propagation and Encryption
There is a real probability that the creators of the FileCry Ransomware are using phishing emails to distribute this Trojan. Users, who are targeted by the FileCry Ransomware, would receive a fraudulent email, which is likely to either contain a macro-laced attachment or a corrupted link. The creators of the FileCry Ransomware may also utilize corrupted advertisements, torrent trackers, fake application updates, etc. Once the FileCry Ransomware manages to infect your PC, it will scan your data. Next, the FileCry Ransomware would trigger the encryption process and lock all the files present on the system. It is likely that the FileCry Ransomware goes after images, audio files, videos, documents, spreadsheets, presentations, databases, archives and many other filetypes. When the FileCry Ransomware encrypts a targeted file, it will mark it by appending a new extension to its name '.filecry.' For example, a file that was named 'blue-mountain.pdf' originally will be renamed to 'blue-mountain.pdf.filecry.'
The Ransom Note
When the encryption process is completed, the FileCry Ransomware will drop a file, which contains the message of the threat's authors. The attackers' ransom message would pop-up in a window that is titled 'FileCry.' In the ransom message, the attackers ask to be paid 0.035 Bitcoin (about $320 at the time of typing this post). The attackers provide an email address, which is how the victim can get in touch with them – ‘file.cry@gmail.com.'
However, there is no valid reason for you to pay the ransom fee demanded by the attackers. A free decryption tool is available online, and it will help you recover the files locked by the FileCry Ransomware. Make sure to keep a reputable anti-malware utility running all the time so that it will remove the FileCry Ransomware from your PC for good.
