Threat Database Ransomware Scarab-Bitcoin Ransomware

Scarab-Bitcoin Ransomware

By GoldSparrow in Ransomware

The Scarab-Bitcoin Ransomware belongs to the Scarab Ransomware family, a large family of ransomware threats that have released new variants between April and July of 2018. The Scarab-Bitcoin Ransomware was first reported on June 18, 2018, and is part of numerous variants being released almost every day. This may happen because Scarab may have been released as part of a RaaS (Ransomware as a Service) platform or as a ransomware builder distributed on the Dark Web. The Scarab-Bitcoin Ransomware encrypts a wide variety of file types, including the following:

.3dm, .3g2, .3gp, .7zip, .aaf, .accdb, .aep, .aepx, .aet, .ai, .aif, .as, .as3, .asf, .asp, .asx, .avi, .bmp, .c, .class, .cpp, .cs, .csv, .dat, .db, .dbf, .doc, .docb, .docm, .docx, .dot, .dotm, .dotx, .dwg, .dxf, .efx, .eps, .fla, .flv, .gif, .h, .idml, .iff, .indb, .indd, .indl, .indt, .inx, .jar, .java, .jpeg, .jpg, .js, .m3u, .m3u8, .m4u, .max, .mdb, .mid, .mkv, .mov, .mp3, .mp4, .mpa, .mpeg, .mpg, .msg, .pdb, .pdf, .php, .plb, .pmd, .png, .pot, .potm, .potx, .ppam, .ppj, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .prel, .prproj, .ps, .psd, .py, .ra, .rar, .raw, .rb, .rtf, .sdf, .sdf, .ses, .sldm, .sldx, .sql, .svg, .swf, .tif, .txt, .vcf, .vob, .wav, .wma, .wmv, .wpd, .wps, .xla, .xlam, .xll, .xlm, .xls, .xlsb, .xlsm, .xlsx, .xlt, .xltm, .xltx, .xlw, .xml, .xqx, .xqx, .zip

The Scarab-Bitcoin Ransomware is designed to take victim's files hostage, marking the files encrypted by its attack with the file extension '.bitcoin.' This makes it nearly identical to the many other variants of this tactic that are uncovered every day.

What is the Threat Presented by the Scarab-Bitcoin Ransomware

The Scarab-Bitcoin Ransomware will often be delivered to the victims through corrupted spam email attachments, which will use embedded macro scripts to download and install the Scarab-Bitcoin Ransomware onto the victim's computer. Once the Scarab-Bitcoin Ransomware has encrypted the victim's files by using the AES 256 encryption, the Scarab-Bitcoin Ransomware will also encrypt the files' names and change their file extensions. This makes it easy to realize which files have been compromised by the Scarab-Bitcoin Ransomware attack.

The Scarab-Bitcoin Ransomware's Ransom Demand

The Scarab-Bitcoin Ransomware will deliver a ransom note as soon as the files become unreadable. The Scarab-Bitcoin Ransomware ransom note is contained in a text file named 'HOW TO RECOVER ENCRYPTED FILES.TXT.' The Scarab-Bitcoin Ransomware ransom note will deliver the following message to the victim:

'HOW TO DECRYPT YOUR FILES
Your personal ID
[random characters]

Your files, documents, photo, databases and all the rest aren't
They are ciphered by the most reliable cipher in the world
It is impossible to restore files without a key
You will try to restore files independently and damage them
FOREVER
You will of the BE Able to the restore files is SO:
to contact us by an e-mail: GarryAxe@protonmail.ch
report your ID and
we will of switch statement off the any Removal of files is
(if do not report your ID identifier , then each will be 24 hours
to be removed on 24 files. If ID-to report we will switch it off)
you send your ID identifier and two files, up to 1 MB in size everyone.
We decipher them, as proof of a possibility of interpretation.
also you receive the instruction where and how many it is necessary to pay.
you pay and confirm payment.
after payment you receive the DECODER program. which you restore ALL YOUR FILES.

you have 72 hours on payment
If you don't manage to pay in 72 hours, then the price of interpretation
the price increases twice each 72 hours'

Computer users are counseled to avoid paying the ransom that the Scarab-Bitcoin Ransomware demands since there is no guarantee that the criminals will aid computer users in restoring their files. Instead, it is important to take precautions against these threats, including having file backups stored on the cloud or an external memory device.

Trending

Most Viewed

Loading...