Home Malware Programs Ransomware Horros Ransomware

Horros Ransomware

Posted: April 9, 2018

The Horros Ransomware is a variant of Hidden Tear: a Trojan created for educational purposes. The Horros Ransomware continues using a simple encryption routine for locking its victims' information and also may create various messages asking for money through pop-ups, images or text notes. Ignoring its ransoming demands is critical for dealing with any file-locking Trojan, and anti-malware products can both remove the Horros Ransomware and prevent it from harming your files.

The Horror of Free Code for Encryptors

The Hidden Tear family is returning with another variation, although its author is neglecting to add any enhanced security to his spin-off. Just like the Ultimo Ransomware, the Sorry HT Ransomware, the exceptionally expensive KoreanLocker Ransomware or the Minecraft-promoting RansomMine Ransomware, the Horros Ransomware blocks your files using a surprisingly simple encryption routine. Depending on the version, malware analysts note that the Horros Ransomware may or may not drop an extra 'ransom note' that demands money for undoing its data attacks.

Microsoft Office media (such as DOC and XLS files), Adobe PDFs, JPEG and JPG images, and ZIP archives are examples of some of the content that the Horros Ransomware attacks. Like most file-locking threats, any victims of a Horros Ransomware infection should assume that the data-locking behavior triggers without showing any symptoms of the activity, such as a pop-up or a user interface. The Horros Ransomware also appends the unique '.horros' extension onto the name of each file it encrypts.

Malware analysts are rating the Horros Ransomware's AES or Rijndael-based cryptography as being minimal and non-secure, like many versions of Hidden Tear. The cyber-security researcher Michael Gillespie provides updated releases of Hidden Tear-compatible decryption software that can 'unlock' any of your files freely. Because, in many, non-consensual encryption attacks, the Trojan deprives the users of being able to open their files without any free recourse, the con artists use threats like the Horros Ransomware for selling their 'premium' decryptors typically.

Changing to a Less Frightful Genre for Your Files

Some versions of the Horros Ransomware may be delivering ransoming instructions asking for five hundred USD, in the Bitcoin cryptocurrency (for avoiding refunds), to restore your files. The Horros Ransomware is, once again, an example of a file-locking Trojan whose extortion techniques aren't in-line with its security protocols, which are broken readily by the appropriate, and freely-downloadable, software. Having backups also is advisable for preserving media in cases of infection by Trojans with more protected payloads than the Horros Ransomware's Hidden Tear-based one.

The Horros Ransomware infections may use different introductory channels, of which, malware analysts often find e-mail spam as being the most commonly-used one. 'Casual' attempts at file-locking Trojan campaigns like the Horros Ransomware's one also may circulate via corrupted websites and file-sharing networks with incorrectly-labeled downloads. Although the earliest detection rates among the AV industry identified the Horros Ransomware poorly, most updated threat databases are catching and removing the Horros Ransomware successfully.

The Horros Ransomware is joining the many versions of Hidden Tear whose locked files are remediable, with a small amount of effort. Giving in to the first pop-up demands you see on an infected PC's monitor is never a sound practice, whether you're using your files for work or pleasure.

Loading...