'newsantaclaus@aol.com' Ransomware

The 'newsantaclaus@aol.com' Ransomware is an encryption ransomware Trojan that was first observed on December 9, 2018. The 'newsantaclaus@aol.com' Ransomware seems to have been created by combining elements of two known ransomware families: the Dharma 2017 and Crysis. The 'newsantaclaus@aol.com' Ransomware carries out a typical encryption ransomware attack by taking over the victim's computer and making the victim's files inaccessible to demand a ransom payment. The 'newsantaclaus@aol.com' Ransomware is typically being delivered through spam email attachments, as well as bogus updates for commonly used Web browsers such as Google Chrome and Mozilla Firefox.

The Santa that will Take Instead of Giving

The 'newsantaclaus@aol.com' Ransomware runs as 'explorer64.exe' onto the victim's computer, clearly attempting to emulate a legitimate Windows files process. Once the 'newsantaclaus@aol.com' Ransomware is installed, it will run in the background to encrypt the victim's files by using a strong encryption algorithm. When the 'newsantaclaus@aol.com' Ransomware encrypts the files, they will become easy to identify because the 'newsantaclaus@aol.com' Ransomware will add the file extension '.id-.[newsantaclaus@aol.com].santa' to each file that the 'newsantaclaus@aol.com' Ransomware attack compromises. Once the 'newsantaclaus@aol.com' Ransomware has made the victim's files inaccessible, the 'newsantaclaus@aol.com' Ransomware delivers a short ransom note, which reads as follows:

'all your data has been locked us
You want to return?
write email newsantaclaus@aol.com'

The 'newsantaclaus@aol.com' Ransomware's attack targets the user-generated files, which may include a wide variety of document types, configuration files, databases, media files, and numerous others, such as the files with the following file extensions:

.jpg, .jpeg, .raw, .tif, .gif, .png, .bmp, .3dm, .max, .accdb, .db, .dbf, .mdb, .pdb, .sql, .dwg, .dxf, .cpp, .cs, .h, .php, .asp, .rb, .java, .jar, .class, .py, .js, .aaf, .aep, .aepx, .plb, .prel, .prproj, .aet, .ppj, .psd, .indd, .indl, .indt, .indb, .inx, .idml, .pmd, .xqx, .xqx, .ai, .eps, .ps, .svg, .swf, .fla, .as3, .as, .txt, .doc, .dot, .docx, .docm, .dotx, .dotm, .docb, .rtf, .wpd, .wps, .msg, .pdf, .xls, .xlt, .xlm, .xlsx, .xlsm, .xltx, .xltm, .xlsb, .xla, .xlam, .xll, .xlw, .ppt, .pot, .pps, .pptx, .pptm, .potx, .potm, .ppam, .ppsx, .ppsm, .sldx, .sldm, .wav, .mp3, .aif, .iff, .m3u, .m4u, .mid, .mpa, .wma, .ra, .avi, .mov, .mp4, .3gp, .mpeg, .3g2, .asf, .asx, .flv, .mpg, .wmv, .vob, .m3u8, .dat, .csv, .efx, .sdf, .vcf, .xml, .ses, .qbw, .qbb, .qbm, .qbi, .qbr , .cnt, .des, .v30, .qbo, .ini, .lgb, .qwc, .qbp, .aif, .qba, .tlg, .qbx, .qby , .1pa, .qpd, .txt, .set, .iif, .nd, .rtp, .tlg, .wav, .qsm, .qss, .qst, .fx0, .fx1, .mx0, .fpx, .fxr, .fim, .ptb, .ai, .pfb, .cgn, .vsd, .cdr, .cmx, .cpt, .csl, .cur, .des, .dsf, .ds4, , .drw, .eps, .ps, .prn, .gif, .pcd, .pct, .pcx, .plt, .rif, .svg, .swf, .tga, .tiff, .psp, .ttf, .wpd, .wpg, .wi, .raw, .wmf, .txt, .cal, .cpx, .shw, .clk, .cdx, .cdt, .fpx, .fmv, .img, .gem, .xcf, .pic, .mac, .met, .pp4, .pp5, .ppf, .nap, .pat, .ps, .prn, .sct, .vsd, .wk3, .wk4, .xpm, .zip, .rar.

Dealing with the 'newsantaclaus@aol.com' Ransomware Infection

Computer users must refrain from paying the 'newsantaclaus@aol.com' Ransomware ransom or contacting the criminals responsible for the 'newsantaclaus@aol.com' Ransomware attack. It is very dubious that the criminals will be willing to help the computer users that contact them via this email address, and they are just as likely to ignore the ransom payment and demand an additional payment from the victim. Instead of paying the 'newsantaclaus@aol.com' Ransomware ransom, computer users are counseled by security experts to protect their data from these threats and ensure that they can restore any files that become compromised by threats like the 'newsantaclaus@aol.com' Ransomware. To do this, make sure that one has file backups and all backup copies are stored in an accessible location such as on the cloud or independent devices. Apart from backup copies of data, it also is necessary to have a reliable and strong security program that is fully up-to-date.