Cyber Ransomware Encrypts Files

The malicious program called Cyber is a form of the Chaos ransomware that our researchers discovered during their analysis of new ransomware samples.

Once the Cyber ransomware is executed on a test system, it will start encrypting files and adding a ".Cyber" extension to the end of their filenames. For example, "1.jpg" becomes "1.jpg.Cyber" and "2.png" becomes "2.png.Cyber".

Additionally, the desktop wallpaper changes and a ransom note titled "read_it.txt" is generated, informing victims that their important files, such as databases, documents, and photos, have been encrypted and that they will need to pay a ransom in Bitcoin (BTC) to decrypt them. The ransom note offers the option of testing decryption on three files for free before paying the ransom, but the provided contact information "test@test.com" is most likely invalid, as it should have contained a valid email address but was neglected.

The ransomware's wallpaper displays the same information and demands a ransom of 100 USD worth of Bitcoin cryptocurrency, with different contact details that are unclear whether they belong to the attackers or developers of the ransomware.

Cyber Ransom Note Keeps it Short

The full text of the ransom note used by the Cyber ransomware reads as follows:

Don't worry, you can return all your files!

All your files like documents, photos, databases and other important are encrypted

What guarantees do we give to you?

You can send 3 of your encrypted files and we decrypt it for free.

You must follow these steps To decrypt your files :
1) Write on our e-mail :test@test.com ( In case of no answer in 24 hours check your spam folder
or write us to this e-mail: test2@test.com)

2) Obtain Bitcoin (You have to pay for decryption in Bitcoins.
After payment we will send you the tool that will decrypt all your files.)

How is Ransomware Like Cyber Usually Distributed?

Ransomware like Cyber is usually distributed through various methods such as phishing emails, malicious attachments or links, software vulnerabilities, fake software updates, and exploit kits. Phishing emails often contain infected attachments or links that when clicked or downloaded, execute the ransomware. In some cases, attackers may exploit software vulnerabilities to gain access to a system and deploy the ransomware.

Fake software updates are another common method used to trick users into installing malware. Exploit kits are software tools used by attackers to exploit vulnerabilities in a system's software and deliver malware such as ransomware.

How To Stop & Remove Cyber Ransomware From Your Computer

By Zaib
March 14, 2023
Ransomware
English
March 14, 2023
Ransomware

Popular Posts

As Fears of the Coronavirus Pandemic Spread, So Does...

4 years ago

Microsoft Warns State-Backed Threat Actors Are Using AI in...

4 days ago

Trojan Al11 Malware Detection & Removal - An Essential...

11 months ago

Pinaview is a Fully-Featured Adware App

10 months ago

"Your iCloud is Being Hacked" and "Your iPhone has Been...

7 months ago

What is Lucky Ransomware?

7 months ago

Related Posts

Ransomware

Axxes Ransomware Steals and Encrypts Files

Axxes Ransomware is an exceptionally dangerous piece of malware, which has the ability to steal data from infected systems prior to encrypting the original copies. This way, the criminals behind the operation have two... Read more

April 28, 2022
Ransomware

Exploit6 Ransomware Encrypts Files & Demands Money

Exploit6 is the name of a newly discovered ransomware strain. The new malware does not seem to belong to any bigger ransomware family. Exploit6 encrypts files on the targeted system and scrambles their contents.... Read more

September 26, 2022
Ransomware

Snick Ransomware Encrypts Several Files

Snick Ransomware is a dangerous malware threat that comes from the Makop family of malware threats. The actions of Snick Ransomware start with seeking out certain files, encrypting them, and then appending the .snick... Read more

March 3, 2022
English
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Home

Products

Cyclonis Backup Cyclonis Password Manager Cyclonis World Time

Support

Help Files FAQs Downloads Inquiries & Support

Company

About Us Contact Us Report Abuse

Legal (Post Merger)

EnigmaSoft Limited (fka Cyclonis Limited)

Cyclonis Backup's Terms of Service Cyclonis Password Manager's EULA Cyclonis World Time's Terms of Service Privacy Policy Cookie Policy Special Discount Offer Terms Additional Terms & Conditions SpyHunter EULA RegHunter EULA EnigmaSoft Privacy Policy & Cookie Policy ESG Privacy Policy & Cookie Policy EnigmaSoft Discount Offer Terms ESG Discount Offer Terms

© 2017-2024 Cyclonis Ltd. CYCLONIS is a trademark of EnigmaSoft Limited (Cyclonis was merged into EnigmaSoft Limited effective November 25, 2023.) All rights reserved.

Registered Office EnigmaSoft Limited: 1 Castle Street, 3rd Floor, Dublin 2 D02 XD82, Ireland.
EnigmaSoft Limited, Private Company Limited by shares, Company Registration Number 597114.

Windows is a trademark of Microsoft, registered in the U.S. and other countries.
Mac, iPhone, iPad and App Store are trademarks of Apple Inc., registered in the U.S. and other countries.
iOS is a registered trademark of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
Android and Google Play are trademarks of Google LLC.