Dazx Ransomware Encrypts Victim Files

ransomware

During our assessment of malware samples submitted to online threat databases, we identified Dazx, a new strain of ransomware that belongs to the Djvu family. The primary objective of Dazx is to encrypt files, and it modifies filenames by appending the ".dazx" extension to them. The ransomware also generates a ransom note called "_readme.txt".

For instance, if Dazx infects a file named "1.jpg", it will change the name to "1.jpg.dazx", while "2.doc" will be renamed to "2.doc.dazx". In some instances, cybercriminals use malware such as RedLine and Vidar to obtain sensitive data before implementing Djvu ransomware to encrypt files.

The ransom note instructs victims to contact the attackers using support@freshmail.top and datarestorehelp@airmail.cc email addresses within 72 hours to avoid paying $980 for the decryption software and key. The attackers offer a 50% discount, reducing the fee to $490.

The ransom note also states that the attackers will decrypt a single file free of charge before payment, provided it does not contain sensitive data. It is crucial to note that victims will be unable to access their files without paying the ransom.

Dazx Asks for Nearly $1000 in Ransom

The complete text of the Dazx ransom note reads as follows:

ATTENTION!

Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-vbVkogQdu2
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.

To get this software you need write on our e-mail:
support@freshmail.top

Reserve e-mail address to contact us:
datarestorehelp@airmail.cc

Your personal ID:

Why Should You Never Pay Ransom to Hackers to Restore Your Files?

You should never pay ransom to hackers to restore your files for several reasons:

  • No guarantee of file recovery: Paying the ransom does not guarantee that the hackers will provide you with the decryption key to restore your files. There have been many cases where victims paid the ransom but never received the decryption key or received a key that did not work.
  • Encourages further criminal activity: Paying the ransom encourages further criminal activity and incentivizes hackers to continue their illegal activities. It also funds the development of new ransomware strains and other malware, making the threat of ransomware even more significant.
  • Supporting a criminal enterprise: By paying the ransom, you are supporting a criminal enterprise and potentially funding other illegal activities, such as human trafficking or drug trafficking.
  • Risk of future attacks: Paying the ransom does not guarantee that the hackers will not target you again in the future. They may view you as an easy target and try to extort more money from you in the future.
  • Negative impact on cybersecurity: Paying the ransom can have a negative impact on cybersecurity in general, as it sets a dangerous precedent and sends the message that ransomware attacks are profitable. This can lead to an increase in ransomware attacks on individuals and organizations.

Therefore, it is essential to avoid paying the ransom and instead take measures to prevent ransomware attacks and protect your data from being encrypted in the first place.

March 17, 2023
Loading...

Cyclonis Backup Details & Terms

The Free Basic Cyclonis Backup plan gives you 2 GB of cloud storage space with full functionality! No credit card required. Need more storage space? Purchase a larger Cyclonis Backup plan today! To learn more about our policies and pricing, see Terms of Service, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.