Eqew Ransomware Locks Systems
Eqew, a type of ransomware discovered through an analysis of new malware samples, has been identified as part of the Djvu malware family. This particular ransomware encrypts files and adds the ".eqew" extension to filenames, accompanied by a ransom note named "_readme.txt."
To illustrate its file modification process, it changes filenames like "1.jpg" to "1.jpg.eqew" and "2.png" to "2.png.eqew," and so forth. Due to its association with the Djvu family, there is a significant possibility that cybercriminals distribute Eqew alongside information stealers such as Vidar or RedLine.
The ransom note informs victims that their files, including images, databases, and essential documents, have undergone encryption. To regain access, victims are directed to obtain a decryption tool and a unique key. The note offers a reassurance provision, allowing victims to submit one encrypted file for free decryption, provided the file lacks valuable information.
The cost of obtaining the private key and decryption software is set at $980. However, a 50% discount is available if victims contact the attackers within the initial 72 hours, reducing the price to $490. Victims can establish communication with the cybercriminals through the provided email addresses: support@freshmail.top and datarestorehelp@airmail.cc.
Eqew Ransom Note Uses Djvu Layout
The complete text of the Eqew ransom note reads as follows:
ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-Y6UIMfI736
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@freshmail.topReserve e-mail address to contact us:
datarestorehelp@airmail.ccYour personal ID:
How Can Ransomware Like Eqew Infect Your System?
Ransomware like Eqew can infect your system through various means, and attackers often use social engineering tactics to exploit vulnerabilities. Here are common methods through which ransomware can infiltrate a system:
- Phishing Emails: Cybercriminals often use phishing emails to distribute ransomware. They send emails that appear legitimate, often containing malicious attachments or links. Clicking on these links or opening infected attachments can trigger the download and installation of ransomware on your system.
- Malicious Websites: Visiting compromised or malicious websites can expose your system to ransomware. Drive-by downloads, where malware is automatically downloaded without user interaction, can occur when you visit such websites.
- Malvertising: Cybercriminals may use malicious advertisements on legitimate websites to deliver ransomware. Clicking on these ads can lead to the download of malware onto your system.
- Exploiting Software Vulnerabilities: Ransomware can exploit vulnerabilities in software or operating systems to gain access to your system. It's crucial to keep your software and operating system up-to-date with the latest security patches to mitigate this risk.
- Infected External Devices: Ransomware can spread through infected external devices, such as USB drives or external hard drives. Connecting an infected device to your system can lead to the ransomware spreading across your files.
