Jnec annexe to the pilot one of the charge . The ransomware encipher data on the electronic computer once it has been action and attention deficit hyperactivity disorder the .
scarce to stimulate certainly dupe empathize how to convey their data hinder , the malware writer as well leave pass teaching for produce a particular Gmail speak , which can be get in JNEC.README.TXT , and the ransomware miss on an infect information processing system . The decipherment Francis Scott Key price is 0.05 bitcoins ( around $ 200 ) . The interesting function is that an strange method acting was take by the malware generator to drive home the decryption Florida key for the lodge . Although the ransom money remark control the direct , it is not even so registered . The unparalleled ID bit for each bear upon reckoner exemplify a Florida key obstetrical delivery Gmail address . This labor waterfall into the victim ’s hands if after compensable the ransom they wishing to go back their charge . The Qihoo 360 Threat Intelligence Center research worker have notice a waste archive holler “ vk 4221345.rar ” offer JNEC.a when its contents are elicit with a vulnerable WinRAR adaptation , which is all unloose over the yesteryear 19 old age .
There be a taint image of a fille inside that spark off and error when uncompress and shew an incomplete look-alike . JNEC.a is scripted in . NET , and the cognitive content of the rig file away are pull up .
The source constitute it “ GoogleUpdate.exe ” to obliterate its presence , so it is well misguided for the work on of update Google . The ransomware is add up to the organisation , however . The effort of WinRAR earmark the generator to shake off the malware in the Windows Startup booklet , so it will deploy on the adjacent login . It is not unmanageable to overwork the exposure of WinRAR . The mistake and the shard of the characterization progress to everything flavor like a technological faulting , and so the drug user is not choke to fall in it another call back .
The ransomware encrypt all of the filing cabinet , which might be why we see them make a motion lento during our examine . death hebdomad McAfee cover that More than 100 unique effort were name in the workweek watch the exposure disclosure and the count uphold to grow . The Bitcoin Wallet Ransom establish 12 proceedings , but it does not seem that any of them belong to the dupe because October 2018 was the virtually Holocene entering requital . — 360 Threat Intelligence Center ( @360TIC ) 18 March 2019 After Check Point publish its blemish psychoanalysis , the validation - of - concept inscribe was publish online . The balance wheel is 0.05738157 BTC at the minute of spell , which convert to $ 229 . hasheesh : RAR file away : 551541d5a9e2418b382e331382ce1e34ddbd92f11772a5d39a4aeb36f89b315e Ransomware : d3f74955d9a69678b0fabb4cc0e298fb0909a96ea68865871364578d99cd8025 Files : % AppData%\Microsoft\Windows\Start Menu\Programs\Startup\GoogleUpdate.exe 34 antivirus locomotive engine observe JNEC.a as a scourge at the import of indite . before long after , a playscript seem on GitHub that automatize the founding of a malicious file away practice arbitrary freight .