KOPYTZEMPEREEBET Ransomware Uses Weird Name
KOPYTZEMPEREEBET is the unpronounceable name of a newly discovered strain of ransomware. This new variant does not belong to any big ransomware clone family.
KOPYTZEMPEREEBET behaves like every other generic ransomware strain. It will encrypt files on the victim's computer, leaving them in an unusable state.
Encrypted files are renamed and the extension ".KOPYTZEMPEREEBET" is appended to them upon successful encryption. This will transform a file named "photo.jpg" into "photo.jpg.KOPYTZEMPEREEBET" once it has been encrypted.
Encrypted files will include almost every document, archive, database and media file type.
The ransomware drops its ransom demands inside a plain text file called "#Decrypt_files#.txt". The full contents of the ransom note are as follows:
Dear Sir or Madam,
----------------------------------------------
Congratulations!
Id like to inform you that your company has been randomly chosen for audit and that you haven't
passed it.
All of your servers are encrypted, same as your backups. Our encryption algorithms impossible to
decrypt, same as your company data and infrastructure. However, do not get nervous, as you shall
restore all of your all your infrastructure and data! In order to do that, follow simple steps
that are described bellow:
Buy decryption program.
Restore all of the company data and infrastructure.
----------------------------------------------
The system hack wasnt done eiter by your competitors or 3rd party, it was strictly our
Our main and only interest is money.
Also, to be mentioned, we value our reputation and principles a lot, therefore any amateur
attempts will be strictly suppressed and will make current situation worse. In addition, all of
decryption software mentioned above is tested, as a proof of our abilities, there is a
possibility of decrypting few small files for free, for your understanding.
----------------------------------------------
To decrypt your files you need to write on our mail - kopytzempereebet at onionmail dot com
But we recommend to write on our ICQ account to talk in a live chat
Install ICQ software on your PC hxxps://icq.com/windows/ or on your mobile phone search in Appstore / Google market ICQ
Write to our account - @KOPYTZEMPEREEBET
hxxps://icq.im/KOPYTZEMPEREEBET
We work 24/7 and if you write in 12h after decryption - you will get 50% discount
Start messaging with an incident ID and 2-3 test files up to 1mb
Your personal ID