Zero-Fucks Ransomware

Zero-Fucks Ransomware Description

Zero-Fucks Ransomware ScreenshotThe Zero-Fucks Ransomware is a data-locking Trojan which has been recently spotted by cybersecurity researchers. Unlike most ransomware threats nowadays, which tend to be almost entirely based on already existing file-encrypting Trojans, the Zero-Fucks Ransomware appears to be an original project.

Infiltration and Encryption

Malware experts were not able to determine with fill certainty what infection vectors may be at play in the spreading of the Zero-Fucks Ransomware. Some believe that the authors of the Zero-Fucks Ransomware have likely opted to use the most common and widely spread techniques in propagating their creation – emails containing macro-laced attachments, fraudulent application updates, and corrupted software downloaded from unofficial sources. The Zero-Fucks Ransomware will begin scanning the system as soon as it infiltrates it. The scan locates all the files which this threat is going to encrypt. Then, the encryption process begins. The Zero-Fucks Ransomware employs an encryption algorithm to lock files and alters their names by adding a new extension – ‘.zerofucks.’ This means that a file originally called ‘fuzzy-duck.jpg’ will have its name changed to ‘fuzzy-duck.jpg.zerofucks’ after undergoing the encryption process of the Zero-Fucks Ransomware.

The Ransom Note

When the Zero-Fucks Ransomware locks all the targeted files, it proceeds to drop a ransom note. The note’s name is ‘Bitcoin_Address.txt’ and reads:

’All your files are locked!
[Unlock]
All your important files have been encrypted.
If you want your files back, you need to pay €400 in Bitcoins.
After the payment is received, we will give you access to unlock your files.
Click on the Payment button to get more info.
If you don't pay within 48 hours, the price will be doubled.
After another 24 hours, the price will be doubled again.
If you don't pay within 96 hours your files will be destroyed.
---
User-ID: 28NNL272XC
Important
Payment
--
If you close me or shutdown your pc without paying, you won't be able to unlock your files again!
We guarantee that you will get your files back if you pay!
You can find more info about paying by clicking on the payment button.
---
You can create a Bitcoin wallet on site's like:
{www.blockchain.com} or {www.coinbase.com}
You can also buy Bitcoins on these websites.
There are plenty of site to buy bitcoins from.
After you've bought €400 worth of Bitcoins, send it to the address wich you can copy below.
Put your user-ID in the description of the transaction!
If we have received your payment, we will give you access to unlock your files.
Click on the Unlock button and follow the instruction there.
If you don't put your user-ID in the description of the transaction, we don't know if you have payed! (you can see your User-ID under the time left)
---
If you have payed, click on the Check button to see if we received your payment.
If we do, we will give you access to unlock your files.
It can take some time to decrypt all your files.
Restart your pc after the program is done with decrpyting.
After restarting your pc, you can use all your files again.’

The attackers demand €400 in Bitcoin. Bitcoin is the preferred currency by most cybercriminals as it cannot be tracked, which helps shady individuals keep their anonymity. The note states that unless the victim pays within 48 hours the price will be doubled, then after 24 more hours, the fee doubles once more, and then threatens to destroy all data if the fee is not paid within 96 hours. The authors of the Zero-Fucks Ransomware have provided instructions on how to create a Bitcoin wallet and where to buy the cryptocurrency from.

We advise you against paying any cash to cybercriminals. Not only is there no guarantee that they will hold up their end of the bargain, but your money will go to fund their criminal activities in the future. A safer approach is to download and install a legitimate anti-spyware application and clear your system of the Zero-Fucks Ransomware. Then, you can try to retrieve some of the lost data via third-party data recovery software.

Do You Suspect Your PC May Be Infected with Zero-Fucks Ransomware & Other Threats? Scan Your PC with SpyHunter

SpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like Zero-Fucks Ransomware as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Note: SpyHunter's scanner is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware removal tool to remove the malware threats. Read more on SpyHunter. Free Remover allows you to run a one-off scan and receive, subject to a 48-hour waiting period, one remediation and removal. Free Remover subject to promotional details and Special Promotion Terms. To understand our policies, please also review our EULA, Privacy Policy and Threat Assessment Criteria. If you no longer wish to have SpyHunter installed on your computer, follow these steps to uninstall SpyHunter.

Security Doesn't Let You Download SpyHunter or Access the Internet?

Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
  • Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
  • Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
  • Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
  • IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.
If you still can't install SpyHunter? View other possible causes of installation issues.

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their PC with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your PC. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.