Mcburglar Ransomware Description
The Mcburlar Ransomware is a potent ransomware threat that could cause massive damage if it manages to infect a computer successfully. Users will be left scrambling, as they lose access to all of their files - documents, PDFs, archives, databases, etc. The goal of ransomware threats is to then extort their victims for money in exchange for the potential decryption of the locked files. This process is predicated on the affected users entering into negotiations with the hackers via the provided communication channels. When it comes to the Mcburglar Ransomware, however, this is not an option, as the ransom note of the threat doesn't provide any ways to reach the cybercriminals. This fact means that users have reduced the options to deal with the ransomware infraction severely, as well as pointing towards the current versions of the Mcburglar Ransomware being released for testing purposes.
Still, the encryption process of the threat is fully functional. Each affected file will have '.mcburglar' appended to their original names as a new extension. Afterward, the malware will deliver its ransom note, which is more a template, as we said, in the form of a text file named 'README-MCBURGLAR.txt.'
According to the note, the cybercriminals also have managed to exfiltrate information from their victims. The collected data is used as extra leverage against the affected user with the hackers threatening to inform the victim's partners, clients, and potentially media outlets. To avoid this outcome, Mcburlar's victims have to meet the demand of the hackers within 3 days. The note does mention the use of a dedicated chat website hosted on the Tor network as the preferred communication channel. However, the link to the site is left blank.
The full text of Mcburglar Ransowmare's note is:
'!!! ATTENTION !!!
YOU HAVE BEEN BREACHED BY PRAVONA
what happened ?
YOUR NETWORK HAS BEEN INFILTRATED, AND WE HAVE ACCESSED ALL YOUR DATA
what does this mean?
IT MEANS THAT SOON YOUR PARTNERS, CLIENTS, BOARD AND MASS MEDIA WILL KNOW OF YOUR PROBLEM
how can it be avoided?
IN ORDER TO AVOID ISSUE
YOU ARE TO CONTACT US NO LATER THAN 3 DAYS AND CONCLUDE DATA RECOVERY AND AGREEMENT what if i do not contact you?
IF YOU DO NOT CONTACT US IN THE NEXT 3 DAYS WE WILL BEGIN DATA PUBLICATION
how do i contact you?
WIZE CHOICE, THERE IS FEW WAY TO DO THIS
I. RECOMMENDED (MOST SECURE METHOD)
a) DOWNLOAD TOR BROWSER (hxxps://www.torproject.org/download/)
b) INSTALL THE TOR BROWSER
c) OPEN OUR WEBSITE WITH LIVE CHAT IN THE TOR BROWSER (hxxp://XXXXXXXXXXXXXXXXXXXX.onion)
d) FOLLOW THE INSTRUCTIONS ON THIS PAGE
II. IF THIS METHOD IS NOT SUITABLE FOR YOU OR TOR IS BLOCKED IN YOUR COUNTRY
a) OPEN OUR WEBPAGE WITH LIVE CHAT (hxxps://XXXXXXXXXXXXXXXXXX.onion)
b) FOLLOW INSTRUCTION ON PAGE.'