Kupidon Ransomware
Malware analysts have spotted a new data-locking Trojan that has been dubbed the Kupidon Ransomware. This threat can sneak into your computer and lock all the data present on your system.
The Kupidon Ransomware may be propagated with the help of mass spam email campaigns. Targeted users will receive an email that contains a fraudulent message and a corrupted attached file. The attachment is likely masked as a harmless file, but nothing can be further from the truth. Cyber crooks often use macro-laced attachments, which, once launched, will exploit a vulnerability in the Microsoft Office service, which will allow the threat to take over the targeted computer. Some other popular distribution methods include fake copies of pirated software suites, malvertising campaigns, bogus application updates and downloads, and others. Once the Kupidon Ransomware has infiltrated your computer, it will not hesitate to lock all your files – documents, images, spreadsheets, archives, videos, audio files, presentations, databases, etc. The Kupidon Ransomware uses a secure encryption algorithm to lock the targeted data. All the locked files would have a new extension added to their names – ‘.kupidon.’ For example, a file called ‘lucid-sky.jpeg’ will be renamed to ‘lucid-sky.jpeg.kupidon’ after the Kupidon Ransomware encrypts it.
The Kupidon Ransomware drops a ransom message from the attackers in the shape of a file called ‘!KUPIDON_DECRYPT.txt.’ It is likely that you will be able to find the file in question on your desktop. The attackers demand to be paid $300 via Bitcoin. Most cybercriminals prefer payments via cryptocurrencies, as it helps them protect their identities and avoid negative repercussions such as persecution by law enforcement. The ransom note instructs the users to install the Tor browser, which will allow them to access the ‘.onion’ website set up by the attackers on the Dark Web. The attackers offer to unlock one or two files free of charge as proof that they have a working decryption tool.
It is best to ignore the instructions and the demands of the authors of the Kupidon Ransomware. If you agree with paying the ransom fee, there is a high chance that you will not receive the decryption key that the attackers have promised. It is advisable to remove the Kupidon Ransomware from your computer with the help of a reputable anti-spyware tool.
