Radman Ransomware

The Radman Ransomware is a newly uncovered ransomware threat. When inspected, it became clear that this is yet another variant of the STOP Ransomware (also known as Djvu Ransomware) quickly, which has been used as a basis for the creation of new file-locking Trojans by many cybercriminals recently. The method of using a well-established piece of malware to base your own creation is becoming increasingly popular in the world of cybercrime.

Malware experts have not confirmed what the exact propagation method of the Radman Ransomware is but is likely that this piece of malware is being spread via emails with infected attachments, corrupted pirated media and bogus software updates. The first thing that the Radman Ransomware would do once it gains access to your computer is to check if the file types it targets are present on your machine. This is done via performing a scan. Usually, threats are programmed to target a very wide range of file types to ensure maximum damage. When the Radman Ransomware locates the files, it will start encrypting them. After undergoing encryption, the data will be locked, and it will have added a new extension '.radman.' In this case, a file named 'pancake.txt' originally will be altered to 'pancake.txt.radman.' Needless to say, you will not be able to use any of the files, which have been locked by the Radman Ransomware. The next step of the Radman Ransomware's attack is dropping its ransom note. The note goes by the name '_readme.txt' and does not contain the sum that the authors of the Radman Ransomware would like to receive from the victim. They, however, give out an email address – gorentos@bitmessage.ch. The victim is supposed to contact the creators of the ransomware threat via email and receive further instructions.

We would recommend you to stay away from the authors of malware in general. They do not have your best interest at heart and make their money from tricking unsuspecting users online so that you cannot expect them to hold to any of the promises they would make to you. Instead, you should make sure you download and install a legitimate anti-spyware application and have it clear your PC.