What is Eyedocx Ransomware?

ransomware

Eyedocx is the name of a new ransomware variant that does not appear to belong to any larger group of family of clones.

Eyedocx does nothing out of the ordinary. The ransomware will encrypt your system, leaving your files unopenable. Encrypted files will include almost every widely used extension, from documents and archives to media files and databases.

Once Eyedocx encrypts a file, it appends the ".encrypted" extension after its original one. This means that a file named "image.jpg" will transform into "image.jpg.encrypt" once it has been scrambled by Eyedocx.

The ransomware drops its ransom note inside a plain text file with the name "readme.infomation" - a bit of a change from the usual .txt files used by most ransomware variants. The note asks for "3 bitcoins" in ransom payment and lists a Telegram account to be used for contact. The full note goes as follows:

If you want to decrypt your files please contact @eyedocx on Telegram
where you can get Telegram: hxxps://desktop.telegram.org/.
Or you can send an email to this mailbox:eyedocx at proton dot me.
we only need 3 bitcoins,thanks!
your personalId is -

November 14, 2022
Loading...

Cyclonis Password Manager Details & Terms

FREE Trial: 30-Day One-Time Offer! No credit card required for Free Trial. Full functionality for the length of the Free Trial. (Full functionality after Free Trial requires subscription purchase.) To learn more about our policies and pricing, see EULA, Privacy Policy, Discount Terms and Purchase Page. If you wish to uninstall the app, please visit the Uninstallation Instructions page.