KimJongUn勒索病毒家族详情
勒索病毒家族名称:KimJongUn勒索病毒家族是否支持解密:否
详情:
被加密文件:
被加密文件后缀格式: 不修改文件后缀
勒索提示信息:
文件名:DANGEROUS_ENCRYPTION_WARNING.txt
文件内容 :
-------------------------------------------------------------------------------
X6!
What happened?
All your important files are temprarily encrypted by X6!
What happened to your files?
All your files, NOW ARE ENCRYPTED and protected by a strong encryption algorithm,
the RSA-2048, You need our private key to recover your files!
More information about the encryption keys using RSA-2048 can be found here:
http://en.wikipedia.org/wiki/RSA_(cryptosystem)
What to do ?
You should pay us 4 Bitcoin to receive an APPLICATION (The private key has been
embedded to it) to decrypt all your files. You can get Bitcoin price at http://preev.com/
Our EMail Address:
bitlocker6667@protonmail.com
What is our Bitcoin Address?
For sending 4 Bitcoin to us you need our Bitcoin address, to obtain it, you should do below steps:
1- You should send one of your readme_xxxxxxxx.txt files from your desktop into our email "bitlocker6667@protonmail.com"
(All readme_blahblah.txt files are the same!)
2- Then you should wait for next insructions
3- We will send our decryptor software finally
Recovery Test...
But how can you trust us? You should ask what is the guarantee that I will get true decryptor
software after I paid 4 Bitcoin?
Don't worry, You can send me one file
for testing decryptor and we will decrypt it, in addition to, we let you see the original file for free.
and have a nice day! :-x
-------------------------------------------------------------------------------
防护建议:
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
页:
[1]