‘Los Pollos Hermanos’ Crypto Virus

The 'Los Pollos Hermanos' Crypto Virus is a file encryptor that targets files on the infected PC with a data-scrambling attack, afterward displaying a ransom message requesting payment for the restoration of your lost information. Although the 'Los Pollos Hermanos' Crypto Virus uses a whimsical ransom note referencing pop culture, in all other respects, the 'Los Pollos Hermanos' Crypto Virus is identical to prior file encrypting Trojans already surveyed by malware experts. Deleting the 'Los Pollos Hermanos' Crypto Virus with appropriate anti-malware equipment and avoiding any payment of its ransom are the two recommended solutions to an infection.

Where Threats are Always Cooking

The 'Los Pollos Hermanos' Crypto Virus gets its name from the fictional restaurant logo incorporated into its ransom message, which is familiar to viewers of the show Breaking Bad. Although the in-show Los Pollos Hermanos chain closes near the end of the show's run, the 'Los Pollos Hermanos' Crypto Virus only has recently begun seeing distribution in the wild. So far, malware experts estimate that the 'Los Pollos Hermanos' Crypto Virus is being distributed primarily to Australian victims, and its stock ransom note requests a payment in Australian Dollars (AUD).

The 'Los Pollos Hermanos' Crypto Virus is an estimated member of Crilock or CryptoLocker, and may distribute itself via third-party Trojans favored by those families. Once introduced to a new PC, the 'Los Pollos Hermanos' Crypto Virus scans the system for 'valuable' file formats, including text documents, images and movie files. The Trojan modifies these files with an AES encryption standard, which has no known means of being unlocked via brute-force techniques.

After making your data unusable, the 'Los Pollos Hermanos' Crypto Virus then loads an additional image containing the ransom request, the restaurant logo, and a related e-mail address, which also references Breaking Bad. The message demands a minimum of $450 AUD for the restoration of any encrypted files. However, as always, malware experts must warn that there is no guarantee that any real decryption services will be provided.

Slow-Cooking a Trojan out of Your Hard Drive

Like most ransomware, the 'Los Pollos Hermanos' Crypto Virus seeks to feast on money acquired through attacking random computers. However, the 'Los Pollos Hermanos' Crypto Virus has no notable protection from the standard security protocols that are effective against other threats of the same type. Remote file backups can prevent your file data from being damaged permanently by a 'Los Pollos Hermanos' Crypto Virus's encryption attack. Like most file encryptors, the 'Los Pollos Hermanos' Crypto Virus also is not a technical virus, and can't infect your file en masse with its code for reproductive purposes. Restarting in Safe Mode and scanning your PC with updated anti-malware tools should allow you to detect and remove a 'Los Pollos Hermanos' Crypto Virus with no further problems.

Shared USB devices, compromised wireless networks, and unsafe downloading sites are some of the usual distribution methods for variants of CryptoLocker. Typically, you will not find a 'Los Pollos Hermanos' Crypto Virus without support from other Trojans, such as Zbot, although the nature of the threats in question may differ between two attacks. Australian residents especially are advised to keep watch all of the usual infection vectors for signs of this Trojan's distribution, although other regions also may be at risk in future campaigns.

Technical Details