A new ransomware, dubbed FireCrypt has been discovered. The key difference between that new ransomware and other malware is that its damage extends to DDoS techniques. After the ransom note is delivered, the ransomware source code launches a function that fills the user’s temporary folder with junk files.
The ransomware disguises itself as an executable (.exe) in an existing file for example document or pictures, to trick users into launching the malware. Once launched, the malware encrypts the information held on the victim’s device and displays a ransom note on the desktop screen. It can be noted that he malware demands $500 in bitcoins.
There is currently no way for recovering file encrypted by FireCrypt ransomware
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street