New day, new ransomware . The latest virus in the town named DeathRansom is spiralling around with encrypting user files and a contact ransom note. This virus effect can be detected as files being encrypted and displayed with an additional extension as “ .wctc ”
This virus, DeathRansom has previously been infamous for just modifying the extensions as .wctc. Back then, no one seemed this could be potentially harmful. But now, it learned to encrypt files and is asking for ransom (in terms of Bitcoins) from victims to obtain the private key. The private key is the only way to decrypt files from it and is obtainable from the hacker.
Image via PixaBay
Experts are assuming it to be distributed by general means of spam emails and attachments. As sourced from victims, the attacker has mentioned his email to be contacted as [email protected] @firemail.cc to obtain the private key for unlocking.
@GrujaRS shared the ransom note on Twitter as
NEW #DeathRansom #Ransomware extension .wctc! Ransom note;read_me.txt email contact [email protected] @firemail.cc Sample VT https://t.co/lcnXh6xzkY @BleepinCompute @LawrenceAbrams @demonslay335 pic.twitter.com/SL60iYRUiM — Cyber Security (@GrujaRS) November 19, 2019
