Home Malware Programs Ransomware Mogera Ransomware

Mogera Ransomware

Posted: May 28, 2019

The Mogera Ransomware does not bring any new features to the table since it is based on the already well-known STOP Ransomware family. Both of these threats use the same file-encryption technique, and the only difference between them is likely to be the name of the ransom note, contact details, and the file extension used to mark locked files. As the name of the Mogera Ransomware suggests, it will rename all encrypted files by adding the ‘.mogera’ extension to their names. In addition to this, the file-locker also will drop a ransom note titled ‘_readme.txt,’ which is usually found on the victim’s desktop when the attack is complete.

Unfortunately, recovering from the Mogera Ransomware’s attack may be a tricky and nearly impossible task. This is due to the lack of a free decryptor when it comes to the STOP Ransomware and its variants – the attackers are the only ones who have the required information to complete the decryption process, but they are only willing to provide the solution in exchange for monetary compensation.

The demands of the attackers can be found in the file ‘_readme.txt,’ which tells victims that they have to pay $980 in exchange for the decryptor. The attackers also appear to have a promotion, which states that users who opt to pay within 72 hours of the attack will have to pay half of the ransom fee - $490. Naturally, the perpetrators want to use Bitcoin for all payments since this can ensure their anonymity and make the transaction irreversible.

The Mogera Ransomware’s authors use the emails bufalo@firemail.cc and gorentos@bitmessage.ch for contact, but they also can be reached via the Telegram account ‘@datarestore.’ We would not advise you to contact the authors of this file-encryption Trojan since they will not help you for free, and you may not end up getting a decryptor even if you fulfill their demands. Do not forget that ransomware operators are certainly not popular for their honesty so that it would not be anything new if they try to trick you.

The best thing to do if you are a victim of the Mogera Ransomware is to use an anti-malware application to eradicate the harmful program and prevent it from causing more damage immediately. When this is done, you will need to look into alternative data recovery solutions – restoring from backups or professional data recovery tools.

Loading...