What is the Ssaw Ransomware?
Our researchers came across the Ssaw ransomware when looking at new submissions to online threat databases. Ransomware is an infamous malicious software used to encrypt data and then demand a payment to decrypt it. After running a sample on our test machine, the files were encrypted with a ".ssaw" extension added to their filenames like "1.jpg.ssaw". The desktop wallpaper was changed too, along with a text file titled "как расшифровать файлы.txt", which included the same ransom note in Russian as on the wallpaper – referencing the Saw movie franchise by saying “I want to play a game”. It must be stressed that this ransomware has no link whatsoever to these films or related individuals or entities.
The message stated that only way to get back encrypted data is by getting hold of the decryption key, but any attempt to remove the malware would result in permanent data loss, stolen data being sold online and frying of motherboard BIOS. Victims have seven hours before contact information will be removed from the notes and communication with attackers becomes impossible.
The Ssaw Ransom Note Is Written in Russian
The complete text used in the Ssaw ransom note reads as follows:
Давай поиграем в игру……
Ваши все файлы были зашифрованы приватным ключом на сервере TOR.
Единственный способ вернуть все файлы это выпросить секретный файл с ключом.
При попытке избавиться от вируса = все ваши данные будут удалены и проданы на чёрный маркет. Материнская плата сгорит.Данные которые заблокированы: Фотографии, видео, документы, пароли и логины.
БИОС ЗАБЛОКИРОВАН
ДАННЫЕ ЗАШИФРОВАНЫ
Удачи.
Оставшиеся время: 7 часов.
Why Is It Not a Good Idea to Pay Ransom to Hackers?
Paying ransom to hackers is not a good idea for several reasons. First, there is no guarantee that the hackers will actually provide you with the decryption key to unlock your data. Hackers may take your money and then fail to deliver the promised key, leaving you out of luck and still unable to access your files. Additionally, sending financial resources to criminals may encourage them to continue their malicious activities, as they know they can make a profit from it. Finally, paying ransoms could also be illegal in some areas, depending on applicable laws. In conclusion, paying ransom to hackers should be avoided due to its uncertain outcome and potential legal repercussions.
