GetAnAntivirus Ransomware
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 100 % (High) |
| Infected Computers: | 2 |
| First Seen: | July 19, 2022 |
| OS(es) Affected: | Windows |
The GetAnAntivirus Ransomware is a harmful threat belonging to the Chaos malware family. Even though it may be considered as yet another variant based on the Chaos Malware template,, the threat's destructive potential remains significant. Attackers can use GetAnAntivirus to lock the data of their victims and then extort money from the users who wish to restore their files. One of the first signs of the malware's actions that users might notice is the change to the names of all locked files. Indeed, the threat will append '.GetAnAntivirus' as a new file extension to the files it targets. In addition, it also will change the current desktop background image.
The ransom note of the GetAnAntivirus Ransomware is delivered to the breached devices inside a text file named 'read_it.txt.' The message states that the attackers want to be paid a ransom worth $500. They also are going to accept only payments made in Bitcoin, with the money expected to be transferred to the provided crypto-wallet address. However, victims also are instructed to send a screenshot of the completed transaction to the 'AnnaSenpai947603@proton.me' email address. Victims of ransomware attacks should know that communicating with cybercriminals is strongly discouraged by infosec experts. Users could be exposing themselves to unnecessary privacy and security risks.
The entire message left by the GetAnAntivirus Ransomware is:
'Hi I´m Your Mum,
Ok no, I'm actually a Virus and Your PC is now mine. (btw I encrypted all your files)
Don't worry, you can get them back.
How can you get them back?
Well,…
You must follow these steps To decrypt your files :
1) Write on our e-mail: AnnaSenpai947603@proton.me.
2) Get some Bitcoins, because to get your files back, you have to pay 500$ to my Wallet.
(by the way it's 19DpJAWr6NCVT2oAnWieozQPsRK7Bj83r4)3) Send us a proof, that you sent the money. (Screenshot, etc.)
Pro tip:
Get a good Antivirus (My Choise: MalwareBytes)'
SpyHunter Detects & Remove GetAnAntivirus Ransomware
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | file.exe | 1174a594c0e76387cdfd6ac159bb3913 | 2 |
