UNNAM3D Ransomware

UNNAM3D Ransomware Description

The UNNAM3D Ransomware is a ransomware Trojan, a threat designed to take the victims' files hostage and then demand a ransom payment from the victim. Threats like the UNNAM3D Ransomware are quite common. However, the most common ransomware Trojans use encryption algorithms to make the victim's files inaccessible. The UNNAM3D Ransomware instead creates a password-protected archive and puts the files in an archive, essentially locking them away. The UNNAM3D Ransomware will then try to get the victim to pay a large ransom in exchange for the password needed to restore the affected data.

The UNNAM3D Ransomware Trojan can Cause a Lot of Harm to Your Files

The UNNAM3D Ransomware uses WinRAR to lock victims' data and attempts to contact the victims via Discord. The UNNAM3D Ransomware is distributed through corrupted spam email attachments and online advertisements commonly. Once the UNNAM3D Ransomware is installed onto the victim's computer, it will make the victim's files inaccessible and then display its ransom note in a pop-up window with the title 'UNNAM3D - R@NSOMEWARE!' The UNNAM3D Ransomware will search for a drive partition with large amounts of free space to create its password-protected archive. The UNNAM3D Ransomware will search for the user-generated files and put all of these files into the archive, deleting the originals. The UNNAM3D Ransomware targets a wide variety of file types, which may include files with the following file extensions:

.jpg, .jpeg, .raw, .tif, .gif, .png, .bmp, .3dm, .max, .accdb, .db, .dbf, .mdb, .pdb, .sql, .dwg, .dxf, .cpp, .cs, .h, .php, .asp, .rb, .java, .jar, .class, .py, .js, .aaf, .aep, .aepx, .plb, .prel, .prproj, .aet, .ppj, .psd, .indd, .indl, .indt, .indb, .inx, .idml, .pmd, .xqx, .xqx, .ai, .eps, .ps, .svg, .swf, .fla, .as3, .as, .txt, .doc, .dot, .docx, .docm, .dotx, .dotm, .docb, .rtf, .wpd, .wps, .msg, .pdf, .xls, .xlt, .xlm, .xlsx, .xlsm, .xltx, .xltm, .xlsb, .xla, .xlam, .xll, .xlw, .ppt, .pot, .pps, .pptx, .pptm, .potx, .potm, .ppam, .ppsx, .ppsm, .sldx, .sldm, .wav, .mp3, .aif, .iff, .m3u, .m4u, .mid, .mpa, .wma, .ra, .avi, .mov, .mp4, .3gp, .mpeg, .3g2, .asf, .asx, .flv, .mpg, .wmv, .vob, .m3u8, .dat, .csv, .efx, .sdf, .vcf, .xml, .ses, .qbw, .qbb, .qbm, .qbi, .qbr , .cnt, .des, .v30, .qbo, .ini, .lgb, .qwc, .qbp, .aif, .qba, .tlg, .qbx, .qby , .1pa, .qpd, .txt, .set, .iif, .nd, .rtp, .tlg, .wav, .qsm, .qss, .qst, .fx0, .fx1, .mx0, .fpx, .fxr, .fim, .ptb, .ai, .pfb, .cgn, .vsd, .cdr, .cmx, .cpt, .csl, .cur, .des, .dsf, .ds4, , .drw, .eps, .ps, .prn, .gif, .pcd, .pct, .pcx, .plt, .rif, .svg, .swf, .tga, .tiff, .psp, .ttf, .wpd, .wpg, .wi, .raw, .wmf, .txt, .cal, .cpx, .shw, .clk, .cdx, .cdt, .fpx, .fmv, .img, .gem, .xcf, .pic, .mac, .met, .pp4, .pp5, .ppf, .nap, .pat, .ps, .prn, .sct, .vsd, .wk3, .wk4, .xpm, .zip, .rar.

Threats that carry out a ransomware attack following this strategy are less common than encryption ransomware Trojans but still active and quite effective. The UNNAM3D Ransomware promotes the Discord account 'UNNAM3D#6666' for victims to request the password. However, the victims have to purchase a $50 Amazon Gift Card and send the code to the criminals before they supposedly receive the password. The UNNAM3D Ransomware ransom note reads as follows:

'-YOUR FILES HAVE BEEN LOCKED-
What Happend?
All your personal files have been locked and you need to pay a ransom to get them back. You will have 24 hours to pay nor the password will be deleted of our servers making it impossible to get your files back.
How do i pay?
You will need to send an message to the below discord with a $50 amazon giftcard code. Then you will shortley get an message back with a password to unlock your files.
Discord: UNNAM3D#6666'

Protecting Your Data from the UNNAM3D Ransomware

The best protection against threats like the UNNAM3D Ransomware is prevention. Malware specialists advise computer users to have file backups. Apart from file backups, a trusted security program should be used to intercept and remove threats like the UNNAM3D Ransomware.