Threat Database Ransomware Gaze Ransomware

Gaze Ransomware

The Gaze Ransomware is a newly discovered ransomware threat. Designed with harmful intent, the Gaze Ransomware targets user data by encrypting it, rendering it inaccessible until the victim pays a ransom to obtain the decryption keys from the attackers.

Once the Gaze Ransomware infiltrates a system, it employs a sophisticated encryption algorithm to lock various types of files, spanning documents, PDFs, archives, databases, images, audio and video files. As part of its operation, the ransomware modifies the filenames by appending the extension '.gaze' to each encrypted file. Furthermore, the attackers leave behind a text file named '_readme.txt,' which serves as a ransom note outlining their demands and instructions for the victim.

What distinguishes the Gaze Ransomware is its affiliation with the infamous STOP/Djvu Ransomware family. This association is particularly significant as the operators of the STOP/Djvu threats have gained notoriety for conducting highly destructive attacks on computers worldwide. In addition to the ransomware variant itself, the compromised devices also may become infected with additional threats, such as infostealers like Vidar or RedLine. These supplementary threatening programs exacerbate the consequences of the initial ransomware attack by compromising sensitive information or perpetrating further damage.

Ransomware Threats Like Gaze may Cause Massive Damage

Upon thorough analysis of the ransom note, its primary objective becomes evident: to provide detailed instructions on how to establish contact with the attackers and initiate a ransom payment as part of the attack process. Inside the '_readme.txt' file, victims are provided with two specific email addresses - '' and ',' which serve as communication channels with the perpetrators.

Furthermore, the ransom note explicitly outlines two distinct ransom amounts, namely $980 and $490, which represent different payment options for the victim. The note emphasizes that by reaching out to the attackers within a limited 72-hour timeframe, victims may be eligible for a discounted rate to obtain the necessary decryption tools, which include the essential software and decryption key.

In the realm of ransomware attacks, it is common for ill-minded actors to employ robust encryption algorithms to lock and encrypt victims' files effectively. This encryption renders the files inaccessible and prevents victims from accessing their own data without the decryption keys.

However, it is crucial to note that paying the ransom to cybercriminals is not recommended. There is a significant risk associated with such transactions, as there is no guarantee that the attackers will provide the victims with the promised decryption tools, even after receiving the payment. Relying on the integrity and honesty of the attackers may result in financial loss without any assurance of data recovery.

The Gaze Ransomware drops the following ransom note on the infected devices:


Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.

To get this software you need write on our e-mail:

Reserve e-mail address to contact us:

Your personal ID:'

Related Posts


Most Viewed