Zoqw Ransomware
Cybersecurity researchers have uncovered another harmful threat that is being tracked as the Zoqw Ransomware. It belongs to the STOP/Djvu family of malware and is designed to encrypt files on an infected system. It appends the '.zoqw' extension to all file names it encrypts, thereby rendering them inaccessible without a decryption key. Additionally, Zoqw drops a '_readme.txt' file containing a ransom note that demands the payment of a hefty fee to regain access to the data. For example, "1.png" would be renamed to '1.png.zoqw,' while '2.png' would become '2.png.zoqw.'
The Zoqw Ransomware is likely distributed alongside other threatening tools such as the Vidar Stealer or RedLine. Both threats target sensitive data such as banking credentials, passwords and encryption keys stored on breached devices.
The threat's ransom note states that the only way to recover the impacted files is to purchase the decrypt tool and unique key by paying a ransom of $980 to the attackers. Apparently, a 50% discount is available if users contact the threat actors within 72 hours. To get the supposed decryptor tool, users must contact 'support@freshmail.top' or 'datarestorehelp@airmail.cc' and provide their ID.
It is essential for users to protect their systems against ransomware and other threatening programs by keeping their operating system and software up to date, using a reliable anti-malware solution, and avoiding downloading suspicious or unknown files. Additionally, regular backups of important data can help mitigate the risk posed by malware such as Zoqw. This will ensure that the users can restore their data in case of an attack.
The full text of the delivered ransom note is:
'ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-N3pXlaPXFm
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@freshmail.topReserve e-mail address to contact us:
datarestorehelp@airmail.ccYour personal ID:'
Zoqw Ransomware Video
Tip: Turn your sound ON and watch the video in Full Screen mode.
