The Dont_Worry Ransomware is a threat, which appears to be closely related to two other file-encryption Trojans, which go by the names Crypto_Lab Ransomware and AMBA Ransomware. All of them seem to use an identical attack method, and the contents of their ransom messages also are very similar. Also, it is also possible that the same cybercrooks are behind all of these three threats since they all use the Russian language in the ransom note, and do not feature an English translation. Regardless of the people behind these threatening programs, you can rest assured that asking the attackers for help is not a good idea and doing it might cost you greatly since they are likely to demand a ransom payment.
When the Dont_Worry Ransomware carries out its attack, it will make sure to encrypt the contents of a broad range of documents, images, archives, videos, backups and other file formats. When a file is locked, it will have its name altered to include the following extension – ‘[email protected][RANDOM 16-CHARACTER ID].’ The ransom message is delivered during the last stage of the attack via the file ‘Don’t_Worry.txt.’ The other two variants can be recognized by the following elements, which are part of their attacks:
- The Crypto_Lab Ransomware uses the ‘[email protected][RANDOM 16-CHARACTER ID]’ extension and the ransom note ‘Crypto_Lab.txt.’
- The AMBA Ransomware uses the ‘.AMBA’ extension and ‘ПРОЧТИ_МЕНЯ.txt’ for the message.
The suggestion to the victims of the Dont_Worry Ransomware is not to trust the promises of the attackers since the odds of getting their files back are rather low. Ransomware authors are known to trick their victims frequently, and you can rest assured that the payment of the ransom fee is not a guarantee that your data will be restored. We advise you to take the situation into your own hands and exterminate the Dont_Worry Ransomware with the help of an up-to-date anti-virus software suite. When you accomplish this, you should look for 3rd-party file recovery methods and utilities.