Vaze Ransomware is a Djvu Clone Seeking Destruction of Files
During our examination of malware samples, we encountered a variant of the Djvu ransomware family known as Vaze. This specific ransomware operates by encrypting files and altering their original filenames by adding the extension ".vaze". Furthermore, it appends a ransom note, which is a text file named "_readme.txt".
As an illustration, files that have been encrypted might undergo a renaming process, changing from "1.jpg" to "1.jpg.vaze", "2.png" to "2.png.vaze", and so on. It is important to note that Vaze ransomware has the potential to be distributed alongside other types of malicious software, such as data-stealing malware like Vidar and RedLine.
The ransom note aims to reassure victims that their files can be restored, emphasizing that the only solution lies in purchasing a decryption tool along with a unique key. As a show of goodwill, the note offers to decrypt one file for free, on the condition that it does not contain valuable information.
Moreover, there is a limited-time discount available for victims who make contact with the attackers within the initial 72 hours. The cost of the private key and decryption software is $980, but a reduced price of $490 is offered for swift action.
In conclusion, the note provides two email addresses (support@freshmail.top and datarestorehelp@airmail.cc) for victims to use in order to communicate with the attackers and make arrangements for obtaining the decryption tool.
Vaze Ransom Note Asks for $980 if Not Paid Instantly
The full text of the Vaze ransom note reads as follows:
ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-tnzomMj6HU
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail "Spam" or "Junk" folder if you don't get answer more than 6 hours.To get this software you need write on our e-mail:
support@freshmail.topReserve e-mail address to contact us:
datarestorehelp@airmail.ccYour personal ID:
Why is it Never a Good Idea to Pay Ransom Demands to Hackers?
Paying ransom demands to hackers is never a good idea due to several compelling reasons:
- No Guarantee of Data Recovery: There is no guarantee that paying the ransom will result in the recovery of your encrypted data. Hackers may simply take the payment and provide no means to decrypt the files, leaving you with financial loss and still without access to your data.
- Reinforces Criminal Activities: Paying the ransom directly contributes to the profitability of cybercrime. It encourages hackers to continue their malicious activities, develop more sophisticated ransomware, and target more victims in the future. By paying, you inadvertently support and perpetuate a criminal industry.
- Heightened Risk: Paying the ransom does not ensure that the attackers won't target you again. In fact, it may make you a more attractive target since they now know you are willing to pay. By giving in to their demands, you may expose yourself to further attacks and ongoing extortion attempts.
- Legal Consequences: Paying a ransom can have legal ramifications. Some countries have laws prohibiting the payment of ransoms to hackers. By engaging in such activities, you may find yourself on the wrong side of the law, potentially facing penalties and legal consequences.
- Funding Other Criminal Activities: The money obtained through ransom payments often fuels other illicit activities, such as human trafficking, drug trade, and terrorism. By paying the ransom, you indirectly contribute to these criminal enterprises, perpetuating harm on a broader scale.
