SOLO Decrypter Ransomware

The SOLO Decrypter Ransomware is an encryption ransomware Trojan that was first reported on October 22, 2018. The SOLO Decrypter Ransomware has various issues, which prevent it from working correctly. However, it seems that the criminals responsible for the SOLO Decrypter Ransomware's intentions were to create a ransomware Trojan to take victims' files hostage and then demand a ransom payment.

How the SOLO Decrypter Ransomware Infects a Computer

The SOLO Decrypter Ransomware is designed to use the AES 256 encryption to make the victim's files inaccessible. It is obvious that the people responsible for the SOLO Decrypter Ransomware also programmed this threat to use strong encryption to make the following file types unusable:

.jpg, .jpeg, .raw, .tif, .gif, .png, .bmp, .3dm, .max, .accdb, .db, .dbf, .mdb, .pdb, .sql, .dwg, .dxf, .cpp, .cs, .h, .php, .asp, .rb, .java, .jar, .class, .py, .js, .aaf, .aep, .aepx, .plb, .prel, .prproj, .aet, .ppj, .psd, .indd, .indl, .indt, .indb, .inx, .idml, .pmd, .xqx, .xqx, .ai, .eps, .ps, .svg, .swf, .fla, .as3, .as, .txt, .doc, .dot, .docx, .docm, .dotx, .dotm, .docb, .rtf, .wpd, .wps, .msg, .pdf, .xls, .xlt, .xlm, .xlsx, .xlsm, .xltx, .xltm, .xlsb, .xla, .xlam, .xll, .xlw, .ppt, .pot, .pps, .pptx, .pptm, .potx, .potm, .ppam, .ppsx, .ppsm, .sldx, .sldm, .wav, .mp3, .aif, .iff, .m3u, .m4u, .mid, .mpa, .wma, .ra, .avi, .mov, .mp4, .3gp, .mpeg, .3g2, .asf, .asx, .flv, .mpg, .wmv, .vob, .m3u8, .dat, .csv, .efx, .sdf, .vcf, .xml, .ses, .qbw, .qbb, .qbm, .qbi, .qbr , .cnt, .des, .v30, .qbo, .ini, .lgb, .qwc, .qbp, .aif, .qba, .tlg, .qbx, .qby , .1pa, .qpd, .txt, .set, .iif, .nd, .rtp, .tlg, .wav, .qsm, .qss, .qst, .fx0, .fx1, .mx0, .fpx, .fxr, .fim, .ptb, .ai, .pfb, .cgn, .vsd, .cdr, .cmx, .cpt, .csl, .cur, .des, .dsf, .ds4, .drw, .eps, .ps, .prn, .gif, .pcd, .pct, .pcx, .plt, .rif, .svg, .swf, .tga, .tiff, .psp, .ttf, .wpd, .wpg, .wi, .raw, .wmf, .txt, .cal, .cpx, .shw, .clk, .cdx, .cdt, .fpx, .fmv, .img, .gem, .xcf, .pic, .mac, .met, .pp4, .pp5, .ppf, .nap, .pat, .ps, .prn, .sct, .vsd, .wk3, .wk4, .xpm, .zip, .rar.

However, the SOLO Decrypter Ransomware does not carry out an effective attack, often failing to encrypt data or encrypting its own content inadvertently. The SOLO Decrypter Ransomware marks the files it encrypts with the file extension '.SOLO,' added to each affected file's name.

The SOLO Decrypter Ransomware's Ransom Demand

The SOLO Decrypter Ransomware delivers a ransom note written in German. The name of this ransom note, contained in an HTML file, is 'IHRE_DATEIEN_SIND_VERSCHLUESSELT.html' (YOUR_DATA_HAS_BEEN_ENCRYPTED.html). However, the SOLO Decrypter Ransomware's ransom note is encrypted itself, which is a flaw since the victim cannot access its contents. The SOLO Decrypter Ransomware's ransom note, recovered by malware researchers from the SOLO Decrypter Ransomware's code reads:

'Alle Ihre Dateien wurden verschlüsselt.
Ihr Computer wurde mit der SOLO Verschlüsselungssoftware infiziert. Ihre Dateien wurden verschlüsselt und können nicht von Ihnen selbst entschlüsselt werden.
Bitte nehmen Sie keine versuche vor, Ihre Dateien selbst zu entschlüsseln, im schlimmsten Fall werden Sie Ihre Dateien beschädigen und somit für immer **unverschlüsselbar machen.**
Um Ihre Dateien zu entschlüsseln, benötigen Sie unsere spezielle Entschlüsselungssoftware:
SOLO Decrypter welche alle Ihre verschlüsselten Dateien sofort entschlüsselt, desweiteren entfernt die Software die SOLO Verschlüsselungssoftware von Ihrem PC.
Der Preis für die Entschlüsselungssoftware beläuft sich auf 0.2 Bitcoin (etwa $1,200).
Bitcoin können Sie auf einen der vielzähligen Krypto-Marktplätzen ganz einfach per Kreditkarte oder Banküberweisung kaufen. Beispiele zu Diensten, wo Sie Bitcoin kaufen können:
Bitpanda - Kreditkarte, SOFORTueberweisung, Giropay, Bankueberweisung
BTC Direct - Kreditkarte, SOFORTueberweisung, Giropay, Bankueberweisung
ANYcoin Direct - SOFORTueberweisung, Giropay, Bankueberweisung
Localbitcoins - Grosse Anzahl an Zahlungsmoeglichkeiten
Coinmama - Kreditkarte
Weitere Möglichkeiten finden Sie mit einer kurzen Google suche nach 'Bitcoins kaufen'.
Nachdem Sie die benötigte Anzahl an Bitcoins (0.2 BTC) erworben haben, senden Sie diese an die folgende Bitcoin-Adresse:
Adresse:
151oCJ1espbmqya9Vj2xxjxi1APb8zhqYR
Betrag:
0.2 BTC
Nachdem wir den kompletten Betrag erhalten haben, wird ihnen automatisch die Entschlüsselungssoftware zum Download bereit gestellt (bitte nehmen Sie keine modifikationen an dieser Datei vor, damit die ordnungsgemäße Funktionalität sichergestellt ist).
Der komplette Betrag wurde noch nicht bezahlt.
Entschlüsselungssoftware Herunterladen'

An English translation of the SOLO Decrypter Ransomware ransom note:

'All your files have been encrypted.
Your computer was infected with the SOLO encryption software. Your files have been encrypted and can not be decrypted by you.
Please do not try to decrypt your files yourself, in the worst case you will damage your files and thus make them unencryptable forever **
To decrypt your files, you need our special decryption software:
SOLO Decrypter which decrypts all your encrypted files immediately, furthermore removes the SOLO encryption software from your PC.
The price of the decryption software is 0.2 Bitcoin (about $ 1,200).
You can easily buy Bitcoin on one of the many crypto marketplaces by credit card or bank transfer. Examples of services where you can buy Bitcoin:
Bitpanda - Credit Card, Instant Bank Transfer, Giropay, Bank Transfer
BTC Direct - Credit Card, Instant Bank Transfer, Giropay, Bank Transfer
ANYcoin Direct - SOFORT Transfer, Giropay, Bank Transfer
Localbitcoins - Large number of payment options
Coinmama - credit card
You can find more options with a short Google search for 'buy Bitcoins'.
After purchasing the required number of Bitcoins (0.2 BTC), send them to the following Bitcoin address:
Address:
151oCJ1espbmqya9Vj2xxjxi1APb8zhqYR
Amount:
0.2 BTC
Once we have received the full amount, the decryption software will automatically be made available to you for download (please do not make any modifications to this file to ensure proper functionality).
The complete amount has not yet been paid.
Download decryption software'

However, to avoid further problems computer users must ignore the contents of this ransom note and refrain from paying any ransom associated with the SOLO Decrypter Ransomware Trojan.