Get Even More Visitors To Your Blog, Upgrade To A Business Listing >>

Noblis Ransomware

The Noblis Ransomware is a new threat, which works by encrypting the majority of the files of its victims, and then offers to provide them with a decryption software in exchange for money. However, the ransom payment that the Noblis Ransomware’s authors demand is not low at all, and their ransom message states that the cost is 1 Bitcoin, which is approximately $16,000. Needless to say, you should never agree to send money to anonymous cybercrooks, especially if they demand ludicrous sums like the one the Noblis Ransomware’s authors ask for.

Unfortunately, the Noblis Ransomware seems to use a secure method to generate and store the encryption key that will be alter-used to encrypt the data stored on the victim’s machine. It appears that the authors of the threat are using a custom-made configuration file, which can be used to modify the ransom payment, ransom message, targeted file formats, and the extension that will be added to the names of locked files. The default configuration of the Noblis Ransomware demands a payment of 1 Bitcoin and appends the ‘.noblis’ extension to the locked files. The Noblis Ransomware only targets files using the following extensions currently:

jpg, mp3, doc, docx, pdf, zip, msi, mp3, tar.gz, txt, tsx.

The ransom message that the Noblis Ransomware displays will be shown in a new window, which also contains a countdown timer, which tells the victims how much time they have to pay the ransom sum. The names of all files that this threat encrypts also will be stored in ‘%APPDATA%\encrypted_files.txt.’ Security researchers also noticed that the Noblis Ransomware performs a check whether this file exists, and does not proceed with the attack if it is already present on the computer.

Unfortunately, threats like the Noblis Ransomware can be quite destructive, and it is strongly recommended to take all necessary measures to ensure that your files are not threatened by file-encryption Trojans like this one. The first lines of protection should always be using a reputable anti-malware software suite, as well as learning how to stay away from shady websites and suspicious digital content. In addition to this, it is also recommended to use professional backup services, which can ensure that you will have a reserve copy of your files in case the original copies get damaged by the Noblis Ransomware or similar threats.
[template:aliases][template:removal][template:technical_title][template:files][template:registry][template:additional]



This post first appeared on SpywareRemove, please read the originial post: here

Share the post

Noblis Ransomware

×

Subscribe to Spywareremove

Get updates delivered right to your inbox!

Thank you for your subscription

×