Hkgt Ransomware

Hkgt Ransomware Description

The infamous STOP/Djvu Ransomware family continues to retain its popularity among cybercriminals willing to run ransomware operations. One of the STOP/Djvu variants that has been identified by infosec experts is the Hkgt Ransomware. The threat exhibits the typical characteristics expected to be found in malware based on this ransomware strain. If executed on a breached device, Hkgt will activate its encryption routine and leave nearly all of the files stored there in an inaccessible state.

Affected users will notice that their documents, PDFs, pictures, photos, videos, archives, databases, etc., all have '.hkgt' appended to their original names as a new extension. In addition, a new text will have suddenly appeared on the device. Named '_readme.txt,' the file will contain a ransom note with instructions from the threat's operators.

The message left by the Hkgt Ransomware states that its victims must pay the sum of $980 if they want to receive the required decryption keys from the hackers. However, if the communication was established at any point during the infection's first 72 hours, the price of the ransom will supposedly be dropped down to $490. The cybercriminals also express willingness to decrypt a single file for free. Users should keep in mind that negotiations with cybercriminals are strongly discouraged as doing so could expose them to even more security and privacy risks.

The full text of Hkgt Ransomware's message is:

'ATTENTION!

Don't worry, you can return all your files!
All your files like photos, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
https://we.tl/t-WbgTMF1Jmw
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.

To get this software you need write on our e-mail:
restorealldata@firemail.cc

Reserve e-mail address to contact us:
gorentos@bitmessage.ch

Our Telegram account:
@datarestore

Your personal ID:'