This article has been created with the main purpose of helping explain what is the .MAFIA file ransomware and how to remove it from you computer plus how you can try and recover encrypted files by it.
A relatively new ransomware infection, using the .MAFIA file extension which it appends to the encrypted files has been reported by security researchers to infect computers, primarily in Korea. The ransomware virus is using a Tor proxy to communicate with it’s C2 server and is a unique ransomware variant. The virus’s primary goal is to encrypt the files of victims and then add the .MAFIA file extension to them while leaving behind a ransom note file with instructions on how to pay a hefty ransom in order to recover the encrypted files.
How Does .MAFIA Ransomware Infect PCs
The primary methods of infection which are conducted by the .MAFIA file ransomware are believed to be via e-mail that may carry the infection file of .MAFIA ransomware. The ransomware virus may be encountered in the form of an e-mail attachment, which aims to pose as a legitimate document, such as:
- An invoice.
- An order receipt.
- Banking (Read more...)
*** This is a Security Bloggers Network syndicated blog from How to, Technology and PC Security Forum | SensorsTechForum.com authored by Vencislav Krustev. Read the original post at: https://sensorstechforum.com/mafia-files-virus-how-to-remove-recover-data/