reter@keemail.me Ransomware

The 'reter@keemail.me' Ransomware was first observed on July 30, 2018. The 'reter@keemail.me' Ransomware is a ransomware Trojan that belongs to the CryptConsole family of ransomware, which first appeared in early July, 2018. Variants of the 'reter@keemail.me' Ransomware were released only hours apart, making it obvious that the 'reter@keemail.me' Ransomware is part of a coordinated campaign to claim as many victims as possible. It seems that the 'reter@keemail.me' Ransomware, like its predecessors, is mainly delivered through the use of spam email messages and corrupted online advertisements.

Like Other Ransomware, the 'reter@keemail.me' Ransomware can Cause a Lot of Problems

There is practically no difference between the 'reter@keemail.me' Ransomware and the many other encryption Trojans that are being utilized to attack computer users currently. The 'reter@keemail.me' Ransomware uses a strong encryption algorithm to encrypt the victims' files and then marks them by adding the file extension '.reter@keemail.me_[hex string]' to each affected file. The 'reter@keemail.me' Ransomware will deliver a ransom note in a text file named 'README.txt' where the victim is asked to contact the criminals via the email addresses 'reter@keemail.me' and 'gores@keemail.me' to pay a ransom in exchange for the decryption program needed to restore the affected files. Effectively, the 'reter@keemail.me' Ransomware takes the victims' files hostage in exchange for a ransom payment and targets the user-generated files such as the files with the following extensions:

.ebd, .jbc, .pst, .ost, .tib, .tbk, .bak, .bac, .abk, .as4, .asd, .ashbak, .backup, .bck, .bdb, .bk1, .bkc, .bkf, .bkp, .boe, .bpa, .bpd, .bup, .cmb, .fbf, .fbw, .fh, .ful, .gho, .ipd, .nb7, .nba, .nbd, .nbf, .nbi, .nbu, .nco, .oeb, .old, .qic, .sn1, .sn2, .sna, .spi, .stg, .uci, .win, .xbk, .iso, .htm, .html, .mht, .p7, .p7c, .pem, .sgn, .sec, .cer, .csr, .djvu, .der, .stl, .crt, .p7b, .pfx, .fb, .fb2, .tif, .tiff, .pdf, .doc, .docx, .docm, .rtf, .xls, .xlsx, .xlsm, .ppt, .pptx, .ppsx, .txt, .cdr, .jpe, .jpg, .jpeg, .png, .bmp, .jiff, .jpf, .ply, .pov, .raw, .cf, .cfn, .tbn, .xcf, .xof, .key, .eml, .tbb, .dwf, .egg, .fc2, .fcz, .fg, .fp3, .pab, .oab, .psd, .psb, .pcx, .dwg, .dws, .dxe, .zip, .zipx, .7z, .rar, .rev, .afp, .bfa, .bpk, .bsk, .enc, .rzk, .rzx, .sef, .shy, .snk, .accdb, .ldf, .accdc, .adp, .dbc, .dbx, .dbf, .dbt, .dxl, .edb, .eql, .mdb, .mxl, .mdf, .sql, .sqlite, .sqlite3, .sqlitedb, .kdb, .kdbx, .1cd, .dt, .erf, .lgp, .md, .epf, .efb, .eis, .efn, .emd, .emr, .end, .eog, .erb, .ebn, .ebb, .prefab, .jif, .wor, .csv, .msg, .msf, .kwm, .pwm, .ai, .eps, .abd, .repx, .oxps, .dot.

The following is the text of the 'reter@keemail.me' Ransomware's ransom note:

'Your files are encrypted!
YOUR PERSONAL ID
[forty random characters]
-------------
Discovered a serious vulnerability in your network security.
No data was stolen and no one will be able to do it while they are encrypted.
For you we have automatic decryptor and instructions for remediation.
-------------
You will receive automatic decryptor and all files will be restored
-------------
* To be sure in getting the decryption, you can send one file(less than 10MB) to [1st email] or [2nd email] In the letter include your personal ID(look at the beginning of this document).
Attention!
Attempts to self-decrypting files will result in the loss of your data
Decoders other users are not compatible with your data, because each user's unique encryption key'

Dealing with the 'reter@keemail.me' Ransomware

Unfortunately, once the 'reter@keemail.me' Ransomware encrypts the files, they cannot be recovered without the decryption key. Considering this, the best protection against threats like the 'reter@keemail.me' Ransomware is to have file backups. File backups allow victims of the 'reter@keemail.me' Ransomware attack to delete the compromised files and replace them with backup copies. Apart from file backups, it is advised to use a strong anti-virus program to ensure that the computer is fully protected from threats like the 'reter@keemail.me' Ransomware. Although the majority of anti-malware software is not capable of restoring the encrypted files, these security programs can prevent threats like the 'reter@keemail.me' Ransomware from being installed on a computer.