LXXwXXXNQ Ransomware
LXXwXXXNQ is the name of a new strain of ransomware. The newly discovered ransomware shows no particular signs of belonging to any of the major ransomware families such as Chaos, Djvu or Phobos.
The ransomware will encrypt popular file types, most notably media, document, archive and database files. Once encryption completes, the files receive the ".lXXwXXXNQ" extension, hence the name of the ransomware. This means that a file previously called "document.pdf" will turn into "document.pdf.lXXwXXXNQ" when it has been fully encrypted.
The ransom note is dropped inside a text file named "HELP_DECRYPT_YOUR_FILES.txt" and is placed on the desktop of the compromised system.
The lXXwXXXNQ ransomware operators expect victims to pay $980 in cryptocurrency to hopefully recover their files. Of course, paying money to criminals is never a good idea and there's no way to know if a decryption tool will ever arrive.
The full text of the ransom note goes as follows:
Oops All Of your important files were encrypted Like document pictures videos etc..
Don't worry, you can return all your files!
All your files, documents, photos, databases and other important files are encrypted by a strong encryption.
How to recover files?
RSA is a asymmetric cryptographic algorithm, you need one key for encryption and one key for decryption so you need private key to recover your files. It’s not possible to recover your files without private key.
The only method of recovering files is to purchase an unique private key.Only we can give you this key and only we can recover your files.
What guarantees you have?
As evidence, you can send us 1 file to decrypt by email We will send you a recovery file Prove that we can decrypt your file
Please You must follow these steps carefully to decrypt your files:
Send $980 worth of bitcoin to wallet: [alphanumeric string]
after payment,we will send you Decryptor software
contact email: asuasy365 at gmail dot com
Your personal ID: