Steriok Ransomware
Infosec researchers have identified a new ransomware threat that has been released in the wild. Named the Steriok Ransomware, this threat can cause significant damage to the computer it infiltrates successfully. Steriok targets the most widely used file types and renders them inaccessible via an uncrackable encryption process. Each locked file will be marked by having '.steriok' appended to its name as a new extension. Afterward, a note with instructions for the victims will be delivered to the computer system as a text file named 'RESTORE_FILES_INFO.txt.'
Ransom Note's Overview
The text of Steriok Ransomware's note is rather brief and it lacks many important details. The ransom note doesn't mention the amount of money demanded by the attackers or if the payment will have to be carried out using a specific cryptocurrency. Instead, the note simply directs the affected users towards contacting the hackers responsible for the Steriok Ransomware. Victims have the choice of trying to open the attacker's dedicated website hosted on the TOR network or sending a message to the two provided email addresses - 'steriok@mail2tor.com' and 'proper12132@tutanota.com.'
The full text of the note is:
'all your important files are encrypted!
Any attempts to restore your files with the thrid-party software will be fatal for your files!
RESTORE YOU DATA POSIBLE ONLY BUYING private key from us.
There is only one way to get your files back:
WARNING: 1) install the tor browser (hxxps://www.torproject.org/download)
Сreate new email on servis hxxp://mail2tor2zyjdctd.onion for contact !
write me on steriok@mail2tor.com or proper12132@tutanota.com
Send me your ID in the emailKey Identifier:'
