The RedKrypt Ransomware is a threat designed specifically to encrypt the files stored on infected systems. The goal is to lock victims out of their own data and use the inaccessible files to extort money from the affected users or corporate entities. Ransomware threats typically carry sufficiently strong encryption routines so restoration of the data without the correct decryption key is practically impossible.
All files impacted by the RedKrypt Ransomware also will have '.p.redkrypt' attached to their original names as a new file extension. The attackers also deliver a ransom note with instructions dropped on the breached devices as a text file named 'RedKrypt-Notes-README.txt.' Victims are likely to discover this new file on the desktops of the infected devices.
The ransom-demanding message lacks many important details. The cybercriminals mainly tell their victims to contact them by sending a message to the 'firstname.lastname@example.org' email addresses. The message must include the ID string found in the threat's text file.
The full text of RedKrypt's ransom note is:
'ALL YOUR FILES HAVE BEEN ENCRYPTED BY THE REDKRYPT RANSOMWARE
RedKrypt doesn't choose victims. Victims choose RedKrypt.
How I can recovery my files?
You cannot use third party software for decrypt your files: you can use only the official RedKrypt Decryption Tool.
Follow this istructions:
1) Copy your decryption ID
2) Write to email@example.com and send your decryption id
3) We'll reply with our conditions, and the decryption tool will be sent to you.
YOUR REDKRYPT CLIENT-ID:'