• Cyber Security
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware File Recovery
    • Ransomware Types
  • Ransomware Services
    • Ransomware Removal
    • Ransomware File Recovery
  • News
  • Tutorials
  • Ransomware TV

MMM Reborn Ransomware

January 19, 2019Simeon Georgiev

Cybersecurity researchers and ransomware removal operators discover new cryptovirological strains on a daily basis. Sometimes, they also stumble upon a new variant of existing ransomware. This has also happened in the latest cryptovirological discovery, where experts discovered a new variant of the MMM Reborn ransomware. It is important to mention here that MMM ransomware has entered the scene nearly after a year. For that matter, ransomware removal experts have named the newly discovered strain MMM Reborn.

Unreasonable Ransom Demand

It seems like the operators of MMM Reborn are not aware of how to devise an extortion demand for ransomware removal. According to the ransom note that appears on the desktop in HTML file format after the completion of encryption, the operators demand 222 Bitcoins to provide the decrypter for the recovery of the encrypted files. As per today’s exchange rates, this amount equals to staggering $0.8 million dollars. This is not a reasonable ransom amount by any means, particularly if the victims are individual users or SME enterprises.

MMM Reborn Might be in Developmental Phase

Ransomware experts also believe that MMM Reborn might still be in its developmental phase. The experts have come to this conclusion due to two reasons

  • The unreasonable ransom amount suggests that the operators are still testing the infection.
  • The volume of the delivered MMM Reborn payload on the affected device is quite low.

The ransom note also has very limited details. For instance, it doesn’t provide any deadline. Moreover, no Bitcoin wallet address is given for the ransom transaction. The attackers also don’t offer free decryption of a file or two to give a proof that they have a complete solution.

Experts are still trying to find out the distribution method used by MMM Reborn Operators. Nonetheless, it has been found out that the attackers are using RSA 2048 encryption module to lock down the files on the targeted devices.

Simeon Georgiev
https://www.linkedin.com/in/simeon--georgiev/
I am a Cyber Security Enthusiast from Bulgaria. I like to write about malware and ransomware and global cyber attacks. You can reach me on Twitter @sgeorgiev1995 or Email: [email protected]
Previous post Cryptovirological Discovery: Tunca Ransomware Next post Why Victims Should Avoid Extortion Payment to Ransomware Operators at All Costs?

Related Articles

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

January 27, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Ransomware: 4 Types of the Latest Trend in Cybercrimes

February 1, 2018Simeon Georgiev
Ransomware: 4 Types of the Latest Trend in Cybercrimes

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

February 1, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Latest on Ransomware TV

https://vimeo.com/399908876?loop=0

Recent Posts

  • How to protect your organization against ransomware reinfections
  • AuKill Helps Ransomware Operators Disable EDR and Security Tools
  • AI-ransomware is a real threat, just not a realistic one yet
  • Rorschach is the new speed king in the ransomware space
  • The Role of Supply Chain Breaches in Ransomware Attacks

Stay Protected

Subscribe to our mailing list to get the latest cyber security and ransomware removal articles!

Thank you for subscribing.

Something went wrong.

Navigation

  • Cyber Security
    • Ransomware File Recovery
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware Types
  • News
  • Tutorials

Ransomware Attacks (Last 6M)

0

Connect & Protect

Facebook
Google+
LinkedIn
YouTube
Vimeo

More

  • BECOME A CONTRIBUTOR

MonsterCloud Reviews

© 2020 MonsterCloud.com. All Rights Reserved.