Sunday 13 March 2016

New Ransomware PadCrypt: The first with Live Chat Support

PadCrypt is a new ransomware discovered by @abuse.ch and analyzed by MalwareHunterTeam that implement a chat interface embedded in its product. For the first time a ransomware virus offers a live support chat feature as well as an uninstaller for its victims.

It is very shocking because this is the first ransomware which provide support service on their payment sites. With the help of live chat features, it let you interact with the malware developers in the real time.

PadCrypt offers a Live Support Chat Feature

Ransomware took a new turn by releasing of PadCrypt, customer support. This new malware offers live chat, that is enough to gain trust of victim.

Live Chat option let the victim send message to the developers.

Live Chat feature of PadCrypt

Now the Command & Control servers for PadCrypt are offline so it won’t actually encrypt anything though it display the ransomware screen. In addition, the live support chat requires to active C2 server.

PadCrypt let you to remove the infection easily

Those who want to remove this virus from them PadCrypt makes it easy by giving the uninstaller. It has been noticed that the ransomware let you to enable and disable autorun. When it gets installed, an uninstaller can be downloaded and installed at %AppData%\PadCrypt\unistl.exe. And once you execute the uninstaller, it’ll remove all the ransom notes and files linked with PadCrypt infection. But the encrypted files will remain there.

Also read: Ransomware malware about, symptoms and properties

Ransomware developers added some CryptoWall features

There is something in CryptoWall that almost very ransomware developers love to use in their other ransomware virus. This is also noticed in the case of PadCrypt as the executable have the various references to the CryptoWall in it. For instance the PDB for PadCrypt executable is:

C:\Users\user\Documents\Visual Studio 2013\Projects\Cryptowall 2.0\Cryptowall\bin\Debug\Obfuscated\PadCrypt.pdb

There are various references to CryptoWall inside C# project for this new ransomware. Like the namespaces for ransomware is also known as Cryptowall.

For More Information: https://www.pcthreatremoval.net/new-ransomware-padcrypt-the-first-with-live-chat-support

Protect your PC from Malware- Malware protection

Ransomware is a type of malware (malicious software) which installs by cyber criminals on your computer so they can bolt it from a distant place. Usually it generates a pop-up window, email or webpage alert from what looks like an administrator right.

Sunday 13 March 2016

New Ransomware PadCrypt: The first with Live Chat Support

PadCrypt offers a Live Support Chat Feature

Live Chat feature of PadCrypt

PadCrypt let you to remove the infection easily

Ransomware developers added some CryptoWall features

0 comments:

Post a Comment

Search This Blog

Follow Us On

Popular Posts

Recent Posts

Categories

Most Trending

Blog Archive

Translate