Dharma-MTX Ransomware is Out to Get Your Files
A file-encryption Trojan is a type of malware that locks or encrypts a user's data and demands a ransom to decrypt the data. The term ransomware describes this type of computer attack where the attacker blocks access to files by encrypting them and offers decryption of the data in exchange for a fee. One of the popular malware families of this type is the Dharma Ransomware. Recently, a new variant of it was identified - the MTX Ransomware.
A ransomware attack can spread through various means, but the most common are spam email attachments, infected USB drives, and compromised web pages.
The malware may be distributed through malicious ads or through social engineering techniques that trick users into opening the malicious attachment. It may also arrive as an email attachment that seems to have been sent from a legitimate source. The email could contain an out-of-office message (i.e., "I am currently on vacation") with instructions to open the attachment for more information about the sender's trip. This type of malware affects mostly Windows computer systems.
The MTX Ransomware attack encrypts files and then adds the suffix '.id-<VICTIM ID>.[mtx88@onionmail.org].MTX' to their name. It also drops the ransom message 'info.txt' on the desktop. The criminals demand a ransom payment, and promise to return the files to any victim who pays. However, we would not advise you to trust them - they will probably try to steal your money. Instead, prioritize removing the file-locker with an antivirus tool. Then, explore alternative data recovery options.