Remove Redeemer Ransomware
Malware developers often do a test run of their latest projects in order to see how they work and what their detection rate is before they start being propagated. Thankfully, some of them do a sloppy job when it comes to testing, and their malicious software ends up in the hands of malware researchers. This has been the faith of the Redeemer Ransomware, a new file-locker, which uses an unfinished ransom note – a strong indicator that it is still being tested by its creators.
While the Redeemer Ransomware may not be finished yet, it appears to be a fairly sophisticated file-locking mechanism. It is impossible to decipher the encryption, and every victim of this threat would need to obtain a unique decryption key that is generated when their system is attacked. However, this piece of information is stored on the servers of Redeemer Ransomware's creators, and they will not give it to anyone for free. On top of the file-encryption attack, the Redeemer Ransomware also attempts to disable System Restore and delete Shadow Volume Copies, which might enable users to recover some of their files.
Files that the Redeemer Ransomware locks are tagged with the suffix '.redeem.' The threat then drops a ransom document titled 'Read Me.txt.' it contains a message, which asks the victim to purchase a decryption key for 20 XMR (Monero,) a privacy-oriented cryptocurrency. However, the criminals do not offer proof that they can decrypt the files and, furthermore, they list a fake email address – test@test.test.
Apart from the test version of the Redeemer Ransomware, antivirus product vendors have also reported a 'live' version, which provides a working email that can be used to get in touch with the attackers. The email listed is equilibriumfinancialsupremecy@gmail.com, and the ransom fee has been raised to 10,000 XMR (approximately $2,180,113.) Needless to say, nobody would agree to pay this outrageous ransom sum.
Take the necessary precautions to keep your system and data safe by using a reputable antivirus software suite. Another way to keep your data safe from ransomware attacks is to maintain up-to-date backups of your data on an offline storage or cloud services.