Mzlq Ransomware

Mzlq Ransomware Image

One of the most favored threats in the world of cybercrime is ransomware – data-locking Trojans capable of encrypting users' files and then extorting them for money. Cybersecurity researchers have spotted a new file-encrypting Trojan, which has been named the Mzlq Ransomware. The Mzlq Ransomware is a variant of the nefarious STOP Ransomware. The STOP Ransomware family is the most active ransomware family of the entire 2019 undoubtedly – over 200 copies of this threat were created and distributed in this year alone.

Propagation and Encryption

The creators of ransomware threats tend to use several propagation methods. Some of the infection vectors include:

• Torrent trackers – If you are in the habit of downloading pirated content, you are a strong candidate to be exposed to threats like the Mzlq Ransomware.
• Malvertising campaigns – Corrupted advertisements that attempt to trick users into installing malware.
• Spam emails – Emails that contain a fraudulent message and a corrupted link or attachment.

When the Mzlq Ransomware compromises your computer it will target a wide range of filetypes - .pdf, .doc, .docx, .png, .gif, .jpeg, .jpg, .mp3, .mp4, .mov, .xls, .xlsx, .rar, .ppt, .pptx, etc. To lock your data, the Mzlq Ransomware would apply a secure encryption algorithm. All the files locked by the Mzlq Ransomware would have their names changed – this threat adds a ‘.mzlq’ extension. For example, a file named ‘bright-horizon.mp4’ will be renamed to ‘bright-horizon.mp4.mzlq.’

The Ransom Note

Next, the Mzlq Ransomware drops a ransom note on the system of the user. The note is contained in a file called '_readme.txt.' In the ransom message, the attackers state:

• The ransom fee is 980$.
• Users who get in touch with the authors of the Mzlq Ransomware within 72 hours of their files being locked would get a 50% discount, which reduces the ransom fee to $490.
• Communication via email is preferred – ‘helpmanager@mail.ch' and ‘restoremanager@firemail.cc.'
• The user can send one file, which will be decrypted free of charge.

It is advisable to take no notice of the demands of cybercriminals like the ones responsible for the Mzlq Ransomware. There is no assurance that the software you need will reach your hands even if you follow all the instructions of the attackers. It is best to obtain a genuine anti-virus software suite that will help you rid yourself of the Mzlq Ransomware safely and quickly.