Mitu Ransomware Will Scramble Your Data
During a routine evaluation of new file submissions, our team of researchers made an important discovery - the Mitu ransomware. This particular malicious software belongs to the Djvu ransomware family and operates by encrypting data and subsequently demanding ransoms in exchange for decryption.
To better understand its functionality, we executed a sample of Mitu on our testing system. As expected, it proceeded to encrypt files and modify their names by appending a ".mitu" extension. For instance, a file originally named "1.jpg" would appear as "1.jpg.mitu," while "2.png" would be transformed into "2.png.mitu." This renaming process occurred for all affected files.
Upon completion of the encryption process, Mitu generated a ransom note titled "_readme.txt." It's worth noting that Djvu ransomware infections may also involve the presence of data-stealing malware, specifically RedLine and Vidar.
The ransom note serves as a demand for payment, informing the victim that their files have been encrypted and can only be recovered by purchasing the decryption key and associated tool from the cyber criminals.
The ransom amount indicated in the message is 980 USD. However, if the victim establishes contact with the attackers within a 72-hour timeframe, the sum will be reduced by 50%. The message emphasizes that, before meeting the ransom demands, the victim can verify the effectiveness of the decryption process by sending the criminals a single encrypted file.
Mitu Ransomware Note Asks for $980 in Ransom
The full text of the Mitu ransom note reads as follows:
ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-nSxayRgUNO
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@freshmail.topReserve e-mail address to contact us:
datarestorehelp@airmail.ccYour personal ID:
How Can You Protect Your Files from Ransomware Like Mitu?
Safeguarding your files from ransomware attacks, such as Mitu, is crucial for maintaining the security of your data. Here are some recommended measures to protect your files:
- Backup your data: Regularly back up your important files to an external storage device or a cloud-based service. Ensure that the backups are disconnected from your primary system when not in use, as ransomware can target connected devices.
- Use reputable security software: Install and regularly update a reputable antivirus or antimalware program. These security tools can detect and block ransomware threats, providing an additional layer of protection.
- Keep your software up to date: Maintain the latest versions of your operating system, applications, and security software. Software updates often include patches that address vulnerabilities exploited by ransomware.
- Exercise caution with email attachments and links: Be vigilant when opening email attachments or clicking on links, especially from unfamiliar or suspicious sources. Ransomware often spreads through phishing emails, so avoid opening attachments or clicking on links unless you are confident in their authenticity.
- Enable automatic software updates: Configure your operating system and applications to update automatically. This way, you'll receive the latest security patches without relying on manual updates.
- Use strong, unique passwords: Create strong passwords for all your accounts and avoid reusing them. Consider using a password manager to securely store and generate complex passwords.
- Be wary of suspicious websites and downloads: Avoid visiting dubious websites or downloading files from untrusted sources. Malicious websites and infected files can introduce ransomware into your system.