Threat Database Ransomware Periox Ransomware

Periox Ransomware

The Periox Ransomware is a file-locking Trojan that doesn't come from a known family. The Periox Ransomware stops the user's files from opening with encryption, tags them with its extension, and asks for a Bitcoin ransom in an HTML message. Appropriately-secure backups will assist with data recovery significantly, and most anti-malware tools will delete the Periox Ransomwareproperly as a threat to your computer.

A Trojan of Humble Means with Hefty Expectations

Windows threats that take files hostage for pay are on every Internet street corner, but even as widespread as they are, there's always room for another one. The Periox Ransomware is the latest example of an independently-built file-locker Trojan, outside of free kits like the Xorist Ransomware, or Ransomware-as-a-Services like the STOP Ransomware. Although its code is original reasonably, the Periox Ransomware's attacks are by-the-numbers, with proven methods of sabotaging Windows computers.

Malware researchers haven't determined the strength of the Periox Ransomware's encryption – the feature that encodes each file's data and stops it from opening. In most threats of this classification, the process isn't reversible by free solutions, although there are exceptions. While Trojan's foundation is the blocking of files, users also can recognize the Periox Ransomware infections by the 'periox' extensions they add to the files, and the presence of a ransom note: a 'help' HTML file.

Victims of the Periox Ransomware infections also can expect additional features that sabotage their PCs while the Trojan holds their files hostage in exchange for a Bitcoin ransom. These include:

  • Registry changes disabling the Task Manager
  • Unwanted boot settings changes that disable security features
  • Deletion of the Shadow Volume Copies or the Restore Points
  • However, these functions are generic and don't distinguish the Periox Ransomware from similar threats, like Dharma Ransomware's family notably.

Buckling Files Down before Trojans Grab Them

There aren't any payments to the Periox Ransomware's wallet as of mid-February 2021. Malware experts suggest that users do everything possible to avoid changing that status. Criminals may withhold unlocking help, raise their prices, or upload other Trojans instead of unlocked files.

The Periox Ransomware is a Windows Trojan and not compatible with other operating systems. Other than this minor restriction and its use of English, there are few qualifiers on its distribution model. Malware experts always recommend users have strong passwords, disable risky features (RDP, macros, Flash, JavaScript, etc.), and avoid illicit downloads for their protection. E-mail tactics such as fake invoices, also, are noteworthy infection vectors for business entities.

Few file-locker Trojans have impressive evasion rates against traditional anti-malware and anti-virus services. However, users can update their solutions' databases for ideal chances of deleting the Periox Ransomware before it stages any encryption attacks.

Sleeping on a backup schedule is asking to become a Trojan's next meal. With always-hungry threat actors like the Periox Ransomware's unknown developer, there's no time to waste on keeping documents, photos, and other media safe.


Most Viewed