Threat Database Ransomware Rastar Ransomware

Rastar Ransomware

The Rastar Ransomware is a newly detected malware threat that has been unleashed in the wild. It acts as typical ransomware, although so far, it hasn't been classified as belonging to any of the already established ransomware families. Nevertheless, the Rastar Ransomware is capable of locking a large array of filetypes by leveraging a powerful cryptographic algorithm to encrypt them. Every file affected in this manner will have its original name changed to include '.rastar' as a new extension. The instructions from the hackers responsible for deploying the Rastar Ransomware are delivered as text files named 'HOW_TO_DECYPHER_FILES.txt' that are dropped in every folder containing encrypted data.

Although the ransom note is on the lengthy side, it doesn't mention the exact amount that the hackers demand to receive. To further pressure their victims into making the payment, the hackers threaten to increase the supposed price after 12 hours, if 24 hours pass without the affected users making the transaction, the decryption keys necessary for the restoration of the locked data will be deleted. To initiate contact, victims are expected to use the provided email address at 'datarecovery@asiarecovery.ir.'

The Rastar Ransomware's full note states:

'What Happen to my computer?
Your important files are encrypted. Many of your documents, photos, passwords, databases and other files are no longer accessible because they have been encrypted. Maybe you are busy looking for way to recover your files , but do not waste your time. Nobody can recover your files without our decryption KEY (if somebody will tell that they can do it, they will also contact me and I will make the price so much expensive than if you contact directly)
- Can i Recover My Files?
Sure. We guarantee that you can recover all your files safely and easily But You have not so enough time . So If you want to decrypt all your files, you need to pay . You only have 12H to submit the payment. After that price will be higher also, If the transaction is not completed within 24 hours your files will be permanently deleted.
Send email to this address: datarecovery@asiarecovery.ir

You have to pay for decryption in Bitcoins.
How to obtain Bitcoins
How To buy bitcoins https://buy.bitcoin.com/
The easiest way to buy bitcoins is LocalBitcoins site. You have to register, click 'Buy bitcoins' and select the seller by payment method and price.
https://localbitcoins.com/buy_bitcoins
Also you can find other places to buy Bitcoins and beginners guide here:
http://www.coindesk.com/information/how-can-i-buy-bitcoins/
Attention!
Do not rename encrypted files.
Do not try to decrypt your data using third party software, it may cause permanent data loss.
Decryption of your files with the help of third parties may cause increased price (they add their fee to our) or you can become a victim of a scam.

Key Identifier:'

Trending

Most Viewed

Loading...