For example, the following file types may be the target of ransomware attack: The remaining files located on the victim’s computer can be encrypted. sys and files with the name ‘_readme.txt’. It skips without encryption: files located in the Windows system directories, files with the extension. Nqsq has the ability to encrypt files on all drives connected to the computer: internal hard drives, flash USB disks, network storage, and so on. The virus tries to encrypt as many files as possible, for this it only encrypts the first 154kb of the contents of each file and thus significantly speeds up the encryption process. The Nqsq ransomware encrypts files using a strong encryption algorithm and a key (‘offline key’ or ‘online key’, as described above). If the virus could not establish a connection with its command server, then it uses a fixed key (the so-called ‘offline key’). If the connection has been established, then it sends information about the infected computer to the server, and in response receives the encryption key (the so-called ‘online key’) and additional commands and malware that must be executed on the victim’s computer. The virus collects information about the victim’s computer and then tries to establish a connection with its command server (C&C). Upon execution, Nqsq creates a folder in the Windows system directory where it places a copy of itself and changes some Windows settings so that it starts up every time the computer is restarted or turned on. Typically, Nqsq can infect a computer when installing programs downloaded from torrent web-sites as well as when running activators, cracked games, key generators and other similar software. It sneaks into the system without any visible symptoms, which is why users notice that their computer is infected too late, when the files are already encrypted. Nqsq ransomware is the 337th version of ransomware called STOP (Djvu). Screenshot of files encrypted by Nqsq virus (‘.nqsq’ file extension) QUICK LINKS
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |