Remove AvosLocker Ransomware
Cybersecurity experts report that a new ransomware gang appears to be threatening users and companies worldwide. The crooks, going by the name AvosLocker Ransomware, are distributing their malicious application via spear-phishing emails. Unfortunately, their file-locker is not an ordinary one. Its attack does not just encrypt files, but it also steals important files beforehand and transfers them to the servers of the attackers. The criminals then use a TOR-based website to publish the names of their victims, as well as to release the files of the organizations that do not agree to pay a ransom fee. This new type of extortion is being adopted by many ransomware gangs such as the REvil Ransomware or the DarkSide Ransomware.
AvosLocker's Encryption Cannot be Cracked
Unfortunately, the developers of the AvosLocker Ransomware appear to be well-versed when it comes to developing file-lockers. It is impossible to counter its encryption via free tools – the only way to protect your data is to take pre-emptive measures. Running an up-to-date anti-malware tool and maintaining regular data backups should be enough to protect you from the consequences of AvosLocker Ransomware's attack.
Apart from stealing and locking files, the AvosLocker Ransomware will also perform some additional tasks on the compromised system. It will wipe out Shadow Volume Copies and System Restore Points, rendering 3rd-party data recovery tools less useful. When encrypting data, it will rewrite the original file with the encrypted copy, therefore further reducing the effectiveness of data recovery tools. Last but not least, the AvosLocker Ransomware has the ability to stop particular processes, which could prevent it from accessing important files. For example, it can automatically terminate database management software, document viewing apps, etc.
AvosLocker Ransomware Gang Extorts Victims for Monero
Once the AvosLocker Ransomware carries out the attack, it creates a ransom message. The document, called 'GET_YOUR_FILES_BACK.txt,' asks victims to send a message to avos@thesecure.biz or avos@mail2tor.com. Victims are also told that paying the ransom fee is the only way to recover their data – if they do not accept to pay, their data will also be released online.
The crooks ask to be paid via Monero, and the sum they demand appears to be different for every victim. Unfortunately, the AvosLocker Ransomware gang is not bluffing when they threaten to release files online – some of their past victims have already had their files released. Still, paying the money and cooperating with ransomware creators should be your last resort. Trying to purchase anything off of cybercriminals may end up getting you scammed.