Mbtf is a ransomware variant belonging to the STOP/Djvu family of malware. Mbtf encrypts files, appending the '.mbtf' extension to each filename. An example of how Mbtf modifies filenames is that it renames 'Picture1.jpg' to 'Picture1.jpg.mbtf,' 'Picture2.png' to 'Picture2.png.mbtf,' and so forth. Additionally, it creates a ransom note containing contact and payment information in the form of a '_readme.txt' file. Before encrypting files, STOP/Djvu threat actors often use information stealers like RedLine and Vidar to obtain sensitive information from the infected computers.
The ransom note message of Mbtf Ransomware informs victims that all of their files have been encrypted with the strongest encryption. In order to recover these files, they must purchase a tool and unique key for $980 (or $490 with a 50% discount if contacted within 72 hours) from the threat actors. Victims can also send one of the encrypted files from their devices to be decrypted for free. To get additional details from the cybercriminals, they need to write to 'email@example.com' or 'firstname.lastname@example.org.' The email message must include the personal ID that was assigned to each victim.
The full message of the ransom note is:
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.
To get this software you need write on our e-mail:
Reserve e-mail address to contact us:
Your personal ID: