'slaker@india.com' Ransomware

The 'slaker@india.com' Ransomware is an encryption ransomware Trojan that was first observed on December 16, 2017. The 'slaker@india.com' Ransomware is one of the many variants of the BTCWare Ransomware, a ransomware family that has been responsible for numerous ransomware attacks in 2017. The 'slaker@india.com' Ransomware carries out a typical ransomware attack by encrypting the victim's files and then asking for the payment of a ransom in exchange for the decryption key necessary to recover the affected files.

Another india.com-Based Ransomware Trojan

The 'slaker@india.com' Ransomware is delivered to victims in the form of a spam email attachment that may appear in the form of a corrupted Microsoft Word file that includes embedded macro scripts that download and install the 'slaker@india.com' Ransomware onto the victim's computer. Once the 'slaker@india.com' Ransomware has been installed, the 'slaker@india.com' Ransomware will compromise the victim's files with a robust encryption method. the 'slaker@india.com' Ransomware will target the user-generated files, making them inaccessible and no longer recognizable by the Windows Explorer. The file types are commonly targeted in attacks like the 'slaker@india.com' Ransomware are:

.3dm, .3g2, .3gp, .7zip, .aaf, .accdb, .aep, .aepx, .aet, .ai, .aif, .as, .as3, .asf, .asp, .asx, .avi, .bmp, .c, .class, .cpp, .cs, .csv, .dat, .db, .dbf, .doc, .docb, .docm, .docx, .dot, .dotm, .dotx, .dwg, .dxf, .efx, .eps, .fla, .flv, .gif, .h, .idml, .iff, .indb, .indd, .indl, .indt, .inx, .jar, .java, .jpeg, .jpg, .js, .m3u, .m3u8, .m4u, .max, .mdb, .mid, .mkv, .mov, .mp3, .mp4, .mpa, .mpeg, .mpg, .msg, .pdb, .pdf, .php, .plb, .pmd, .png, .pot, .potm, .potx, .ppam, .ppj, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .prel, .prproj, .ps, .psd, .py, .ra, .rar, .raw, .rb, .rtf, .sdf, .sdf, .ses, .sldm, .sldx, .sql, .svg, .swf, .tif, .txt, .vcf, .vob, .wav, .wma, .wmv, .wpd, .wps, .xla, .xlam, .xll, .xlm, .xls, .xlsb, .xlsm, .xlsx, .xlt, .xltm, .xltx, .xlw, .xml, .xqx, .xqx, .zip.

The files encrypted by the 'slaker@india.com' Ransomware attack are renamed, with the addition of a file extension that uses the following model:

'.[slaker@india.com]-[8 random chars]-ID.wallet'

The 'slaker@india.com' Ransomware's Ransom Demand

The 'slaker@india.com' Ransomware delivers its ransom note in the form of a file named '!#_READ_ME_#!.inf' that is dropped on the infected computer system's desktop as soon as the files are encrypted. The 'slaker@india.com' Ransomware ransom note contains the following text:

'[WHAT HAPPENED]
Your important files produced on this computer have been encrypted due a security problem
If you want to restore them, write us to the e-mail: slaker@india.com
You have to pay for decryption in Bitcoins. The price depends on how fast you write to us.
After payment we will send you the decryption tool that will decrypt all your files.
[FREE DECRYPTION AS GUARANTEE]
Before paying you can send to us up to 3 files for free decryption.
Please note that files must NOT contain valuable information
and their total size must be less than 1Mb
[HOW TO OBTAIN BITCOINS]
The easiest way to buy bitcoin is LocalBitcoins site.
You have to register, click Buy bitcoins and select the seller by payment method and price
https://localbitcoins.com/buy_bitcoins
[ATTENTION]
Do not rename encrypted files
Do not try to decrypt your data using third party software, it may cause permanent data loss
If you not write on e-mail in 36 hours - your key has been deleted and you cant decrypt your files
Your ID: [EDITED]'

It is not recommended that computer users to avoid following the instructions in the 'slaker@india.com' Ransomware ransom note. Instead of doing this, computer users should restore their files from a backup copy.

Protecting Your Data from Threats Like the 'slaker@india.com' Ransomware

The best protection against threats like the 'slaker@india.com' Ransomware is to have file backups on external memory devices on the cloud. Backup copies of your files mean that there is no need to contact the people responsible for the attack. It is also necessary to have a reliable security program that is always updated, which can be used to intercept threats like the 'slaker@india.com' Ransomware before they carry out their attack.