Matafaka Ransomware

The Matafaka Ransomware targets a large array of file types and renders them inaccessible via an encryption process. The employed algorithm ensures that the locked files cannot be decrypted realistically without having access to the necessary decryption key. Each locked file will have '.matafaka' appended to its original name as a new extension. The Matafaka Ransomware is an extremely threatening malware classified as part of the Xorist Ransomware family.

Usually, the next step performed by ransomware threats is to deliver a ransom note with instructions for the victims. At first glance, Matafaka appears to follow the same pattern as it drops a text file named 'HOW TO DECRYPT FILES.txt' on the infected system alongside a pop-up window displayed to the victim. Unfortunately, users affected by this particular malware will soon discover a rather nasty surprise. 

Matafaka Leaves Its Victims without Options

Typically, one can expect the note to contain vital details such as the amount of the ransom, the specific cryptocurrency needed for the transaction, or even a way to reach out and obtain additional details from the hackers. However, the Matafaka Ransomware delivers none of that information. Both the text file and the pop-up window contain a single sentence that states:

'hello there your computa is trashed'

It is certainly possible that instead of the usual monetary motivated ransomware operators, the people behind Matafaka simply want to cause as much chaos and destruction as possible. However, a more realistic assumption is that the current version of the threat has been released for testing purposes, preparing the way for a subsequent complete version. 

For the moment, victims have few options at their disposal. The best-case scenario is to use a professional anti-malware product to remove Matafaka from the system completely and only then try to recover the locked data from a suitable backup.