Sequre Ransomware, a virus written in C# programming language encrypts the stored data using AES scripting algorithm.The compromised data is renamed using the hex code pattern <sequre@tuta.io>
For instance a file named “picture.jpg” would be renamed to <sequre@tuta.io_765….> which is completely unusable.
Once the data is encrypted, an HTML executable file “HOW DECRIPT FILES.hta” is generated, and a copy of each is placed in every infected folder as a ransom note.
Unlike other ransomware, Sequre encrypts the executable programming code itself rather than the data. So, when Sequre is infiltrated, full code is decrypted, compiled, and executed directly in system memory. This allows Sequre to bypass system security software (anti-virus/anti-spyware suites, etc.)
The victims are informed about the encryption through an HTML file which contains a ransom message stating that a unique decryption key is required to restore files. Victims are entitled to pay a ransom of 0.14 Bitcoin (BTC) which is equivalent to $1280 to get the decryption key which is hidden in another remote server. After submitting the payment, users are required to send a screenshot of the payment made (via email) as a proof.
To be assured to receive the decryption key,after the payment is made, victims are permitted to send a single file (upto 10MB) which is restored and returned as a ‘guarantee’ to ensure that the decryption is possible and will be received with an additional cost of .01 Bitcoin. However, the users should never agree to pay in any case because the victims are often ignored, once the ransom is paid.
So the best course of action is Sequre removal rather than attempting to recover the files.
The malware gets infiltrated by some unsafe online conducts such as downloading freebies or visiting malicious sites:
Steps to be followed to remove the malware from the system
Step A: Reboot your system to safe Mode with Networking
To restart the system to Safe Mode with Networking, follow the below steps:
5 Click on the username and enter the password (if any).
Step B: Reboot your system to Safe Mode with Command Prompt
Step C: Restore the system files and settings
OR
OR
Continue to follow steps 4 & 5 of Method 2 to restore the System Files and settings.
Hits: 17
Subscribe to our newsletter today to receive updates on the Latest News and Threats.
Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.