Bgzq Ransomware is Based on Djvu
While going over new malicious file samples we discovered that Bgzq is a member of the Djvu ransomware family. Bgzq operates by encrypting files and appending the ".bgzq" extension to their filenames. For example, it changes "1.jpg" to "1.jpg.bgzq", "2.png" to "2.png.bgzq", and so forth.
Furthermore, Bgzq generates a ransom note in the form of a text file named "_README.txt". It's noteworthy that those responsible for Djvu ransomware often integrate data-stealing malware like Vidar or RedLine into their schemes.
The note begins by assuring the victim of file recovery possibilities. It elaborates that all file types, including images, databases, and documents, have been encrypted using robust encryption and a unique key. It emphasizes that the sole method of file recovery is through purchasing a decryption tool and obtaining a unique key.
The perpetrators provide a guarantee by allowing the victim to submit one encrypted file for free decryption as evidence of their ability to unlock files. However, they stipulate that the file must not contain valuable information. The only contact information provided is email addresses (support@freshingmail.top and datarestorehelpyou@airmail.cc) listed within the document.
The ransom amount is specified as $999 for the private key and decryption software, with a 50% discount offered if contacted within the first 72 hours, reducing the price to $499. Each victim receives a unique personal ID.
Table of Contents
Bgzq Ransom Note in Full
The complete text of the ransom note used by Bgzq reads as follows:
ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
Do not ask assistants from youtube and recovery data sites for help in recovering your data.
They can use your free decryption quota and scam you.
Our contact is emails in this text document only.You can get and look video overview decrypt tool:
Price of private key and decrypt software is $999.
Discount 50% available if you contact us first 72 hours, that's price for you is $499.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@freshingmail.topReserve e-mail address to contact us:
datarestorehelpyou@airmail.ccYour personal ID:
How Can You Protect Your Data from Ransomware Attacks Similar to Bgzq?
To safeguard your data from ransomware attacks like Bgzq, consider implementing the following protective measures:
Regularly Back Up Your Data: Create and maintain regular backups of your important files on an external hard drive, cloud storage service, or both. Ensure that your backups are stored securely and are not directly accessible from your computer network to prevent them from being encrypted by ransomware.
Keep Software Up to Date: Regularly update your operating system, software applications, and antivirus programs to patch security vulnerabilities. Enable automatic updates whenever possible to ensure that you have the latest security patches installed.
Exercise Caution with Email Attachments and Links: Be wary of unsolicited emails, especially those with attachments or links from unknown or suspicious senders. Avoid clicking on links or downloading attachments from these emails, as they may contain malicious payloads that could lead to a ransomware infection.
Use Reliable Security Software: Install reputable antivirus and anti-malware software on your computer and keep it updated with the latest virus definitions. Use additional security tools, such as firewalls and intrusion detection systems, to strengthen your defenses against ransomware attacks.
Enable Pop-up Blockers and Ad Blockers: Configure your web browser to block pop-ups and ads, as they may redirect you to malicious websites hosting ransomware or other malware.
Implement Network Segmentation: Divide your computer network into separate segments or zones to contain the spread of ransomware in case of an infection. Implement access controls and monitor network traffic to detect and respond to ransomware attacks more effectively.
By implementing these preventive measures and staying vigilant, you can significantly reduce the risk of falling victim to ransomware attacks like Bgzq and protect your data from being encrypted and held hostage.
How To Stop & Remove BGZQ Ransomware From Your Computer & Prevent File Encryption
