Lethal Lock 勒索软件将加密您的文件
在分析新的恶意软件样本时,我们发现了一种名为 Lethal Lock 的勒索软件变种。该勒索软件会加密文件并将其扩展名(“.LethalLock”)添加到文件名中。此外,Lethal Lock 还会生成勒索信(“SOLUTION_NOTE.txt”)并更改受害者的桌面壁纸。
例如,被 Lethal Lock 加密的文件会重命名如下:“1.jpg”变为“1.jpg.LethalLock”,“2.png”变为“2.png.LethalLock”,等等。赎金通知首先承认网络实体“LETHAL LOCK”破坏了服务器安全。它称加密过程非常复杂,并警告说,如果没有解密密钥,几乎不可能恢复文件。它威胁说,如果 72 小时内不支付赎金,数据将永久丢失,并会立即采取行动。
其中包括通过 Telegram (@lethallock) 联系客户支持以及转移 25 比特币以获取解密密钥的说明。
致命锁 赎金票据全文
Lethal Lock 赎金条全文如下:
Oh, what an exquisite predicament has befallen you!
We take immense pleasure in informing you, without the slightest pang of regret that your server security has been breached & immortalized by LETHAL LOCK, a majestic entity in the realm of cyber command.
Marvel at the masterpiece of encryption we have orchestrated, utilizing algorithms of such complexity and military-grade standards that they render your critical documents as elusive as a mirage in the desert.
Your files now dance to the tune of an encryption algorithm so intricate, so enigmatic, that mortals tremble at its sight.
Should you dare to defy our demands, be prepared for the consequences — your data will remain locked away forever and we will sell them to a third party on the Dark Web or use them as a trade by barter on the Dark-Web to get higher upgraded tools to dismantle your organization within a twinkle of an eye.
Any futile attempts to decipher this cryptographic masterpiece, appeal to law enforcement, or seek assistance from less reputable cybersecurity entities will only hasten the irreversible disappearance of your confidential datas and the swift deletion of the decryption key.
Your enduring rule, should you choose to accept it, is to comply with our ransom payment demands within 72 hours (3days). Failure to meet this demand will result in the permanent loss of your decryption key, accompanied by a symphony of data obfuscation maneuvers that thwart even the most valiant attempts at file recovery.
To embark on this momentous path of payment and data liberation:
1) Reach out to our esteemed customer support service on Telegram: @lethallock (For those evading payment, we suggest enjoying a hot cup of coffee while witnessing the swift datas/files wipe out orchestrated by the Lethal Lock algorithms).
2) Acquire and transfer 25 bitcoins with express efficiency. Remember, our treasuries crave bitcoins, and in return, we will provide you with the coveted decryption key that unlocks the chest of digital wealth.
Follow these crucial instructions:
1) Keep your computer powered on and connected to the digital world.
2) Resist all temptations to use data recovery tools without our permission.
3) Execute the bitcoin transfer with surgical precision before the time extinguish your chance for redemption.
In your cryptographic triumph,
Van Dmitry Vladimir
Senior Director of Operations
Lethal Lock Tech Company - LLTC
如何保护您的数据免遭勒索软件攻击?
保护您的数据免受勒索软件攻击需要采取多层次的安全措施。您可以实施以下几种策略:
定期备份数据:确保定期备份重要文件,并将其存储在无法从主网络或系统直接访问的安全位置。这样,如果您成为勒索软件攻击的受害者,您可以从备份中恢复文件,而无需支付赎金。
保持软件更新:确保系统上的所有软件(包括操作系统、防病毒程序和应用程序)都已安装最新的安全补丁。过时软件中的漏洞可能会被勒索软件攻击者利用。
使用防病毒和反恶意软件:在所有设备上安装信誉良好的防病毒和反恶意软件并保持更新。这些程序可以帮助检测和阻止勒索软件威胁,防止其造成危害。
启用电子邮件过滤:实施电子邮件过滤解决方案以拦截可疑电子邮件并防止其进入您的收件箱。这有助于降低成为传播勒索软件的网络钓鱼攻击受害者的风险。
