Home / Parasites / Trojans / Mobef-salam Ransomware
Click on screenshot to zoom
Danger level 7
Type: Trojans
Common infection symptoms:
  • Slow Computer
  • System crashes
  • Connects to the internet without permission
  • Installs itself without permissions
  • Can't be uninstalled via Control Panel

Mobef-salam Ransomware

Mobef-salam Ransomware might be a new variant of a previously reviewed threat called Mobef Ransomware. Same as the previous version it was created to encrypt personal files so the malware’s creators could extort money from those who do not have any means to recover locked data. After damaging targeted data, the malicious program should create a ransom note. According to it, the user is supposed to pay the hackers in Bitcoins. Given there is a chance these people will not provide the decryption tool even if you pay the asked sum, we do not recommend putting up with any demands. For those who do not wish to risk losing their savings, we would recommend erasing Mobef-salam Ransomware. It will not restore encrypted data, but at least you will have a clean computer. The instructions placed a bit below the text should help with the removal part, although if it looks a bit complicated, you could use a reliable antimalware tool instead.

As you continue reading this article, you should learn more about Mobef-salam Ransomware as we will reveal more details we found out while testing and researching it. First of all, we would like to discuss the possible malicious program’s distribution channels. Even though it is unknown how this threat enters the system, we can list a few variants from our experience with similar ransomware. For starters, the malware might be distributed through harmful email attachments. In such case, the victim could receive it via Spam emails or other suspicious letters received from unknown senders. The other way to encounter it is through malicious file sharing web pages that could distribute fake installers, updates, and so on. Clearly, one way or the other the infection’s installer should be launched by the user himself, which means if you want to protect the computer from similar malicious threats in the future you should be more cautious. To always be sure whether the data you encounter is harmful or not you could scan it with a reliable antimalware tool.

Once installed, Mobef-salam Ransomware should immediately begin encrypting user’s files, for example, pictures, photos, archives, documents, and so on. Moreover, our researchers say the malware might encrypt user’s files without marking them with an additional extension. Therefore, the victim may not notice something is wrong until he tries to launch the locked data or sees the malicious program’s ransom note. This document might be called READ.4YOU or similarly and it could appear on your Desktop or other directories containing locked files. Based on the writing manner and lots of grammatical mistakes it does not look like English could be the hackers’ first language. The Mobef-salam Ransomware’s ransom note starts with “salam. haha sorry i kript ur filez” and ends with “you pay me bitcoins...maktoob786@takfir24.net byezzzzz.” As you can see the threats creators do not mention any decryption tools or the amount of bitcoins they might cost. Nevertheless, they ask to write them via email and once you do we have no doubt they will send further instructions proposing to pay a ransom and promising to deliver the decryption tool afterward.

Unfortunately, the hackers cannot be trusted, and it is entirely possible they will not send the decryption tool even if the victim puts up with all of their demands. In other words, you might lose the money you transfer in vain, and the locked files could remain to be encrypted. Under such circumstances, we do not think it would be wise to deal with the malware’s creators, and if you feel the same, we encourage you to ignore the ransom note and concentrate on Mobef-salam Ransomware’s removal. Users who want to get rid of it manually could do so while following the instructions placed at the end of this article as they will explain what to do step by step. Probably, an easier way to eliminate this malicious program would be to acquire a reliable antimalware tool and do a full system scan. Then the tool should detect Mobef-salam Ransomware and other possible threats, which you should be able to erase at the same time by merely pressing the deletion button.

Eliminate Mobef-salam Ransomware

  1. Press Ctrl+Alt+Delete.
  2. Go to the Task Manager.
  3. Find the malware’s process.
  4. Mark this process and click End Task.
  5. Exit Task Manager.
  6. Tap Win+E.
  7. Navigate to:
    %TEMP%
    %USERPROFILE%\desktop
    %USERPROFILE%\downloads
  8. See if you can find the malicious file launched when the computer got infected.
  9. Right-click the suspicious file and press Delete.
  10. Then find the infection’s ransom note and delete it too.
  11. Close File Explorer.
  12. Empty your Recycle bin.
  13. Reboot the system.
Download Spyware Removal Tool to Remove* Mobef-salam Ransomware
  • Quick & tested solution for Mobef-salam Ransomware removal.
  • 100% Free Scan for Windows
disclaimer
Disclaimer

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
 This is a captcha-picture. It is used to prevent mass-access by robots.

 
© 2006-2024 pcthreat.com  |  Terms of use |  Privacy policy |  About us |  Link to US