1 of 2
Danger level 9
Type: Trojans
Common infection symptoms:
  • Can't be uninstalled via Control Panel
  • Connects to the internet without permission

Alphabet Ransomware

Alphabet Ransomware seems to be a recently created malicious file-locking application, although currently, it might be unable to encrypt data. Our researchers tested a particular sample of the infection that not only did not encipher files on the computer but also did not provide payment information. Nonetheless, the malware showed a ransom note on the screen which demanded to pay an estimated price to get a decryption key. It is most likely that what we came across was an unfinished version of this malicious program, which means there is a chance its creators could release a fully developed variant in the future. For more information and tips how to avoid ransomware applications we advise you to read a full article. Our specialists recommend removing the malware too to keep the system clean. If you need any help while eliminating Alphabet Ransomware, you can slide below and follow the provided instructions.

The malware infects the computer when its user launches a malicious file. At this point, it is important to understand how such data may reach users as it might help you avoid ransomware applications alike the next time. According to our specialists, ransomware installers are often sent via Spam emails, so in order to protect the system from threats like Alphabet Ransomware, users need to be more careful with emails carrying attachments. You should be suspicious when the file comes from an unknown sender or without a text explaining what is in it or why this file was sent to you. Provided you have any doubts about the attachment we would advise not to take any risks and scan it with a reliable antimalware tool to find out whether it is harmful or not.

In most cases, when the user accidentally launches a malicious file infected with ransomware, the malware installs itself or runs from the directory where it was downloaded and starts the encryption process. However, since Alphabet Ransomware is probably not yet fully developed, it acts slightly differently. At first, the malicious program should show you a white window with Microsoft Windows logo and a false “preparing update” notification. If the threat was fully functional, it would probably use the fake notification to distract the user and encrypt files on the computer. The only way to stop this process might be to turn off the computer quickly, but the false “preparing update” window may prevent the user from doing so as it looks quite convincing.

Later the fake update window should be replaced with a borderless green screen containing the ransom note. The note does not provide a lot of information as it only states that “There is no way to decrypt your files without purchasing a special decryption key and typing it here. To get the decryption key you should pay 1.0BTC.” The demanded price is not so small since, at the moment, one bitcoin is around nine hundred US dollars. Strangely, while the green screen provides a box for inserting the decryption key, it does not have any buttons that would redirect the user to a website with further instructions. Because of this, paying the ransom is impossible.

Fortunately, in this case, it is also not necessary, although our specialists would advise against paying the ransom in any case. Dealing with malware’s creators is always risky as there is a chance they could trick you. Thus, even if you encounter a version of Alphabet Ransomware that enciphers files, we would advise you not to take any chances and delete it right away.

The malicious program should not place a lot of data on the computer since it is supposed to work from the directory where the malicious file was launched. Meaning, users can get rid of the malware by simply removing the infected file they launched. If you need any assistance with this task, you could take a look at the instructions below. They will show users how to locate Alphabet Ransomware’s data on the computer and erase it manually.

If manual deletion looks too complicated for you, we would advise you to acquire a legitimate antimalware tool and use it instead. With its scanning feature, users can clean the system from the ransomware and other possible threats. Plus, you would gain a useful tool that can guard your system from threats in the future.

Erase Alphabet Ransomware

  1. Tap Ctrl+Alt+Delete and pick Task Manager.
  2. Click on the Processes tab.
  3. Mark the process related to the infection and press End task.
  4. Exit the Task Manager and press Win+E.
  5. Navigate to the folder where you downloaded the malicious file, for example, Downloads, Desktop, Temporary files, etc.
  6. Select the malicious file and press Shift+Delete.
  7. Close the Explorer.
Download Spyware Removal Tool to Remove* Alphabet Ransomware
  • Quick & tested solution for Alphabet Ransomware removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.