Hey, my system is infected with OGONIA Ransomware. It encrypts my various file and a ransom note is displayed on my computer screen. Is it safe to pay ransom to get my file back? Please help me for facing this ransomware threat. Thanks in advance.
OGONIA Ransomware is dangerous crypto-threat that comes under the category of ransomware family. It is mainly created by cyber criminals with main motive to extort money from innocent users. It is the updated variant of CryptoMix Ransomware. It was first reported in 2nd week of August, 2017. Once it enters, it will scan the whole system and encrypts your various data or file and demand ransom for its decryption key. It uses the combination of RSA-2048 and AES-256 encryption algorithm to encrypt the file and rename the file name using “[32_random_letters_and_digits].OGONIA” pattern. After encryption, it will create a ransom note named as “_HELP_INSTRUCTION.TXT” and put it in each folder containing encrypted file. According to ransom note, it contains a short message about encrypted files and payment method to buy decryption key.
Cyber criminals demand ransom in the form of Bitcoins in exchange for decryption key and encourage users to buy it from designated wallet address. The cost of decryption key is unconfirmed, but hackers demand ransom according to the amount of file encrypted. This virus can also warns users that if you not make payment in given time and want to remove this virus then you will lose your file permanently. The decryption key is stored in the remote server of cyber criminals. After infiltration, OGONIA Ransomware creates new registry entries in Window Registry to achieve high level persistence that can allow other malware threats into the system. It can also disable Window Firewall and other security tools to be undetected.
OGONIA Ransomware is mainly distributed through spam email attachments, visiting suspicious sites, peer-to-peer sharing of network, freeware and shareware downloads, via exploit kits and much more. It is strongly recommended that never pay any money to the cyber criminals. It is not sure that you will successfully receive decryption key after make payment. Once you make payment, you will automatically connect to the cyber criminals. Through this virus, cyber criminals monitor your online activities and steal your privacy for misuse. Therefore, it is strongly advised that remove OGONIA Ransomware from the PC as soon as possible.