ShinigamiLocker Ransomware

The ShinigamiLocker Ransomware is an encryption ransomware Trojan. Ransomware Trojans like the ShinigamiLocker Ransomware are designed to take the victims' data hostage in exchange for a ransom payment. The ShinigamiLocker Ransomware and other encryption ransomware Trojans are among the most common threats active today. Computer users should take precautions against the ShinigamiLocker Ransomware and similar threats. The best precaution against these infections is the use of file backups o a detachable device or the cloud. This, in combination with a security program, can help computer users recover their data in the event of an infection.

The ShinigamiLocker Ransomware’s Name is Originated from a Famous Japanese Animation

The ShinigamiLocker Ransomware was first observed on August 14, 2017. The ShinigamiLocker Ransomware is themed after the Shinigami, 'Gods of Death' featured on the popular 'Death Note' manga and anime series. The main Shinigami character from this series is used on the ShinigamiLocker Ransomware as an image included in the ShinigamiLocker Ransomware's lock screen and a ransom note. The ShinigamiLocker Ransomware is designed to encrypt the victim's files using the AES 256 encryption. The ShinigamiLocker Ransomware will display a lock screen that prevents the victim from accessing the infected computer's Desktop.

How the ShinigamiLocker Ransomware may be Delivered

The ShinigamiLocker Ransomware may be delivered using spam email attachments and embedded links. These will use attack websites or Microsoft Word files that have corrupted scripts and macros designed to download and install the ShinigamiLocker Ransomware onto the victim's computer. The ShinigamiLocker Ransomware will change the affected file's names into a random string of numbers and letters and add the file extension 'shinigami' to the end of each affected file's name. The ShinigamiLocker Ransomware targets the user-generated files, including audio, video, databases, photos, and files associated with common software such as Microsoft Office and Adobe Acrobat.

The ShinigamiLocker Ransomware’s Ransom Demand and Lock Screen

After encrypting the victim's files, the ShinigamiLocker Ransomware delivers a lock screen that appears the next time the infected PC starts up. The ShinigamiLocker Ransomware lock screen is mainly black and includes an image of the iconic Shinigami from the Death Note series. Over a black background, the following message is written in a white text:

'SHINIGAMI LOCKER
YOU HAVE BEEN HACKED
YOUR FILES WERE ENCRYPTED
GET RID OF THIS IN FEW STEPS
STEP1 GO TO https://localbitcoins.com/
STEP2 PAY THE EXACT AMOUNT
REQUEST DELOW. MAKE SURE YOU PAY IT TO THE CORRECT ADDRESS
STEP 3 WAIT UNTIL THE PAYMENTIS CONFIRMED AND ENJOY YOUR PC
-
YOU NEED TO PAY BITCOIN WORTH 50$!
ANY ATTEMT ON CLOSING OR DELETING THIS SOFTWARE WILL DAMAGE YOUR PC
-
AMMOUNT: 50 $ ~ 0.01816 BTC BITCOIN WALLET FOR PAYMENT 1MBPSrn46eEVBHoypyjgfdCCf5DQxQsx3f'

Dealing with the ShinigamiLocker Ransomware Infectio

The ShinigamiLocker Ransomware demands a ransom of 50 USD. However, this ransom shouldn't be paid. The con artists will rarely provide the decryption key after the victim pays the ransom. They are just as likely to demand more money or ignore the victim altogether. Apart from this, victims that pay these ransoms may be targeted for additional attacks since they have shown a willingness to pay, not to mention that paying the ShinigamiLocker Ransomware ransom allows these con artists to continue making a living from carrying out these infections.

The best protection against the ShinigamiLocker Ransomware and other encryption ransomware Trojans is to use a backup method to ensure that the files encrypted in the attack can be restored quickly and easily by the computer user. If the victims of the ShinigamiLocker Ransomware attack are able to restore their own files, then the con artists will not have any leverage over the victim that allows them to demand a ransom payment.