RPD Ransomware

The RPD Ransomware is an encryption ransomware Trojan that is a direct descendant of a ransomware Trojan known as Rapid, which was first released in January 2018. The RPD Ransomware is the third major release in this family of threats. This may point to the use of the RPD Ransomware as part of a RaaS (Ransomware as a Service) or be developed using a ransomware builder kit. Computer users should be prepared to protect themselves and their machines against threats like the RPD Ransomware since the prevalence of these multiple variants in a single family of ransomware, as seen with the Scarab family of threats, has increased in 2018 substantially.

How You can Get Infected by the RPD Ransomware

The RPD Ransomware is being distributed mainly through the use of corrupted email attachments, often delivered using spam email messages. Once the RPD Ransomware has been installed, the RPD Ransomware will use a strong encryption algorithm to make the victim's files inaccessible, targeting the user-generated files, which may include a wide variety of media files, databases, documents and numerous others. The file types targeted by threats like the RPD Ransomware include:

.ebd, .jbc, .pst, .ost, .tib, .tbk, .bak, .bac, .abk, .as4, .asd, .ashbak, .backup, .bck, .bdb, .bk1, .bkc, .bkf, .bkp, .boe, .bpa, .bpd, .bup, .cmb, .fbf, .fbw, .fh, .ful, .gho, .ipd, .nb7, .nba, .nbd, .nbf, .nbi, .nbu, .nco, .oeb, .old, .qic, .sn1, .sn2, .sna, .spi, .stg, .uci, .win, .xbk, .iso, .htm, .html, .mht, .p7, .p7c, .pem, .sgn, .sec, .cer, .csr, .djvu, .der, .stl, .crt, .p7b, .pfx, .fb, .fb2, .tif, .tiff, .pdf, .doc, .docx, .docm, .rtf, .xls, .xlsx, .xlsm, .ppt, .pptx, .ppsx, .txt, .cdr, .jpe, .jpg, .jpeg, .png, .bmp, .jiff, .jpf, .ply, .pov, .raw, .cf, .cfn, .tbn, .xcf, .xof, .key, .eml, .tbb, .dwf, .egg, .fc2, .fcz, .fg, .fp3, .pab, .oab, .psd, .psb, .pcx, .dwg, .dws, .dxe, .zip, .zipx, .7z, .rar, .rev, .afp, .bfa, .bpk, .bsk, .enc, .rzk, .rzx, .sef, .shy, .snk, .accdb, .ldf, .accdc, .adp, .dbc, .dbx, .dbf, .dbt, .dxl, .edb, .eql, .mdb, .mxl, .mdf, .sql, .sqlite, .sqlite3, .sqlitedb, .kdb, .kdbx, .1cd, .dt, .erf, .lgp, .md, .epf, .efb, .eis, .efn, .emd, .emr, .end, .eog, .erb, .ebn, .ebb, .prefab, .jif, .wor, .csv, .msg, .msf, .kwm, .pwm, .ai, .eps, .abd, .repx, .oxps, .dot.

The RPD Ransomware will make it easy to recognize the damaged files because the RPD Ransomware will add the file extension '.RPD' to each affected file's name. Once the RPD Ransomware has encrypted the victim's files, the RPD Ransomware will deliver a ransom note to the infected computer's desktop as a text file named 'How Recovery Files.txt,' which contains the following text:

'Hello, dear friend!
All your files have been ENCRYPTED
Do you really want to restore your files?
Write to our email - asgard2018@cock.li
and tell us your unique ID – ID-OJINCVRG

Dealing with Threats Like the RPD Ransomware

Computer users should avoid contacting the criminals responsible for the RPD Ransomware or following the instructions in the RPD Ransomware ransom note. Instead of paying the ransom, they should remove the RPD Ransomware with the help of a renowned security program that is fully up-to-date. Once the RPD Ransomware has been removed, malware analysts advise restoring any files encrypted by the RPD Ransomware with file backups.

Protecting Yourself from Threats Like the RPD Ransomware

The best protection against threats like the RPD Ransomware is to have file backups stored on removable devices. An effectual security program that is fully up-to-date should be used to ensure that your computer is protected from threats. Since the most used way of distributing threats like the RPD Ransomware is through corrupted email attachments, it is crucial to take precautions when handling this content kind and learn how to identify and deal with spam email messages.