Esolutions team has spotted this virus in the first week of August and a few weeks, this virus has spread\u00a0quite widely. In a\u00a0few days, it was known that virus striked in more than 20 countries around the world. The biggest amount of victims were reportedly from Brazil and Vietnam. This variant of ransomware has .keypass\u00a0extension that each file gets after the successful encryption.<\/p>\n
Also, as typical ransom demanding virus\u00a0KEYPASS ransomware<\/a> displays a ransom note:\u00a0!!!KEYPASS_DECRYPTION_INFO!!!.txt. In this message, the victim may see an explanation of this situation and the information about the payment<\/a>. $300 is the amount virus developers want\u00a0to get, and as usual, the payment should be in Bitcoin. A victim has only 72 hours to pay up if they want to get their data allegedly decrypted. But most of the cybersecurity experts advise people not to pay.<\/p>\n This virus has a feature of manual\u00a0control that needs to be activated with a specific key on the keyboard. This is not typical for other ransomware viruses. The feature allows hackers to gain access to the infected system and changing the victim’s ID, file extension,\u00a0and other encryption-related information. This makes KEYPASS\u00a0ransomware even more dangerous.<\/p>\n Also,\u00a0KEYPASS\u00a0ransomware can be used as a spreader for other malware. This virus can open the backdoor for infections like trojans. This is very dangerous\u00a0because ransomware demands a payment directly, but trojan<\/a>\u00a0can mine cryptocurrency or track your banking information without your knowledge.<\/p>\n As a company related to cybersecurity for more than ten years, we have encountered a lot of malicious programs. For many years ransomware is one of the most dangerous cyber infections. The developers of this virus make\u00a0a\u00a0lot of money from this activity, and it allows them to gain profit easily. However, you as a victim should never pay the demanded amount of money. This cannot give positive results. The only thing you can do is try to avoid these infections as much as possible.<\/p>\nThe hidden features of the ransomware<\/h2>\n
Ransomware prevention tips<\/h2>\n