Mora Project Ransomware
The Mora Project Ransomware is designed to encrypt the victims' files, carrying out a typical ransomware attack that extorts victims after taking their files hostage. The Mora Project Ransomware was first observed after con artists submitted the Mora Project Ransomware to online anti-virus platforms, a common practice used by threat developers to test whether their threat creations are capable of evading detection by common anti-virus engines. It is clear, from various of its characteristics, that the Mora Project Ransomware is still under development and it is unfinished currently. However, in its current form, it is capable of carrying an attack, despite the fact that it's ransom demand is extremely unrealistic. It is likely that the people responsible for the Mora Project Ransomware attack will release an updated version of the Mora Project Ransomware that is even more sophisticated and capable of evading detection while demanding a ransom payment that is more in line with the average ransom demands from these threats.
Is the Mora Project Ransomware 'Testing the DNA' of Your Files to Encrypt Them?
The main purpose of the Mora Project Ransomware is to encrypt the victims' files. As soon as the Mora Project Ransomware is installed, it will scan any local drive, as well as detachable memory devices connected to the infected computer and directories shared on the infected computer's network. The Mora Project Ransomware will target user-generated files found in all these locations, encrypting them with a strong encryption algorithm to make them unusable. The most common way in which the Mora Project Ransomware is delivered is via corrupted email attachments delivered using spam email messages. It is clear that the Mora Project Ransomware infection is targeted towards corporate and enterprise systems since the ransom demand is currently 16 BitCoin (approximately $40,000 USD), which would be a completely unreasonable ransom payment to demand from any individual computer users.
How Con Artists may Profit from the Mora Project Ransomware
The main reason why the Mora Project Ransomware encrypts its victim's files is to enable the people responsible for the Mora Project Ransomware attack to demand the payment of a ransom; essentially, the Mora Project Ransomware will take the victim's files hostage until the ransom demand is met. The Mora Project Ransomware demands its payment in a text file named 'ReadMe_Important.txt,' which is dropped on the infected computer. Below is the full message contained in this text file:
'Your Files has been encrypted with a very strong hashing algorithm using a password stored in a secure server
If your files are important to you then send us 40.000$ Bitcoin
Our bitcoin Adress is : [34 RANDOM CHARACTERS]
Once we receive the bitcoin we will send you the password to decrypt your files
You can use the software named(to be find on your desktop) : The-decrypter.exe and provide the password'
The files encrypted by the Mora Project Ransomware attack are recognizable because they will no longer be accessible and will have the file extension '.encrypted' added to the end of each file's name.
Dealing with a Mora Project Ransomware Infection
Computer users are advised to refrain from paying the Mora Project Ransomware ransom persistently. The people responsible for the Mora Project Ransomware attack may not return the decryption key necessary to recover the affected files. They are just as likely to demand more money, re-infect the victim's computer, or simply keep the money and ignore the victim altogether. Rather than paying the Mora Project Ransomware ransom, take precautions to ensure that your data is well protected against the Mora Project Ransomware and other threats. PC security researchers advise having backup copies of all files, stored on an external memory device or the cloud. Having backups copies provides full protection from the Mora Project Ransomware and other ransomware Trojans, helping computer users recover quickly in case of a Mora Project Ransomware infection.
