Threat Database Ransomware Mifr Ransomware

Mifr Ransomware

Threat Scorecard

Threat Level: 100 % (High)
Infected Computers: 30
First Seen: December 1, 2009
Last Seen: May 10, 2021
OS(es) Affected: Windows

The Mifr Ransomware is a potent crypto locker threat that has been spawned based on the VoidCrypt malware family. As such, it operates as a typical VoidCrypt variant. Any computer system compromised by it will have nearly all stored files encrypted with an uncrackable cryptographic algorithm. Affected users will then be extorted for money if they want to get the decryption key and tool from the hackers.

The Mifr Ransomware modifies the names of the files it encrypts significantly. It appends an email address under the control of the cybercriminals, followed by a unique ID assigned to the victims and finally '.mift' as a new extension. The particular email address pleased in the file names is '' The threat's ransom note is delivered as text files named '!INFO.HTA' that will be created in every folder containing encrypted data.

Although the ransom note doesn't specify the exact amount of the ransom demanded by the hackers, it does mention that the transaction must be made using Bitcoin. Furthermore, the price will be doubled when 48 hours since the start of the infection have passed. Users must establish communication by sending a message to the same '' email address. If they do not receive an answer, a secondary email at '' should be used. A couple of small files can be attached to the messages to be decrypted for free.

The full text of the Mifr Ransomware's note is:

'!!! Your Files Has Been Encrypted !!!♦ your files has been locked with highest secure cryptography algorithm ♦

♦ there is no way to decrypt your files without paying and buying Decryption tool♦

♦ but after 48 hour decryption price will be double♦

♦ you can send some little files for decryption test♦

♦ test file should not contain valuable data♦

♦ after payment you will get decryption tool ( payment Should be with Bitcoin)♦

♦ so if you want your files dont be shy feel free to contact us and do an agreement on price♦

♦ !!! or Delete you files if you dont need them !!!

Your ID :-

our Email

In Case Of No Answer'


Most Viewed