Payt Ransomware

Payt Ransomware Description

Cybercriminals can deploy the Payt Ransomware threat to lock the data of their victims. This malware threat is designed specifically to encrypt numerous different file types with a sufficiently strong cryptographic algorithm. All affected files will no longer be useable and victims will be unable to even open them. The Payt Ransomware modifies the names of the processed files significantly. Indeed, victims will notice that nearly all of their files now have an ID string, an unfamiliar email, and a new file extension as part of their original names. The threat adds the 'wesleypeyt@tutanota.com' email and either '.Payt' or '.payt' as an extension. Furthermore, a text file named 'ReadthisforDecode.txt' will be dropped onto the system's desktop.

The text file contains the threat's ransom note. The message details the instructions of the cybercriminals. It reveals that victims will need to pay a ransom to receive a decryption tool from the threat actors. However, before paying, affected users must locate and send a special key file that has been created by the Payt Ransomware on their devices. The file is supposed to be located in the C:/ProgramData folder and have a name similar to 'RSAKEY-SE-[Key]' or 'RSAKEY.KEY.' Victims also can send a single test file to be decrypted for free. As potential communication channels, the ransom note mentions two email addresses - 'wesleypeyt@tutanota.com' and 'wesleypeyt@gmail.com.'

The entire ransom note left by Payt Ransomware is:

'Your Files Are Has Been Locked
Your Files Has Been Encrypted with cryptography Algorithm

If You Need Your Files And They are Important to You, Dont be shy Send Me an Email

Send Test File + The Key File on Your System (File Exist in C:/ProgramData example : RSAKEY-SE-24r6t523 pr RSAKEY.KEY) to Make Sure Your Files Can be Restored

Get Decryption Tool + RSA Key AND Instruction For Decryption Process

Attention:

1- Do Not Rename or Modify The Files (You May loose That file)

2- Do Not Try To Use 3rd Party Apps or Recovery Tools ( if You want to do that make an copy from Files and try on them and Waste Your time )

3-Do not Reinstall Operation System(Windows) You may loose the key File and Loose Your Files

Your Case ID :

OUR Email :wesleypeyt@tutanota.com
in Case of no answer: wesleypeyt@gmail.com
'