Victims of Fake Trial

A new ransom Trojan was discovered by BitDefender security company researchers. It scrambles the data of its victims offering later a “trial” version of the software to unlock files. It is too impudently, isn’t it?

Behavior of Trojan.Crypt.VB.U as well as that of its variants is alike the behavior of any ransom scams. The virus scrambles all data found after “reaching” your Windows system. Then the user is offered to unlock files for a fee. The price is about $70.

There is an innovation of the malware. If users want to decrypt three files more, they can buy a full license. Clearly, they do it without willingness, but the offer is worthy.

An ordinary type of XOR algorithm is the type of encryption used. It means the decryption won’t require great efforts.

Ransom Trojans

Ransom Trojans were changing during many years. There were those that used watertight encryption. Others made their victims think hidden files are unrecoverable though the ways of hiding were too trivial.

One of the premium rate SMS scams was discovered in 2010 in Japan. This one attempted to screw out money from victims. Porn browsing history of the victim was copied on to a public web server.

Another version of the similar attack was marked in September this year. It tried to act in the name of Microsoft persuading the users to pay “punishment” due to the running an unlicensed Windows copy.

Now, users are not so ductile and are more aware about wise ransom demands. This cause more and more sophisticated types of the malware. One of the recent Trojan types states that it detects porn on the PC of the user and demands that the UK's Metropolitan Police will receive a fine paid. It’s nimbly enough, isn’t it?

The most important thing for criminals is to make the victim to believe that the only way out is to pay a certain fee.