According to Trend Micro security researchers, they have detected a new ransomware that proliferates through an e-mail on the internet. Trend
Micro have called the malware WORM_RANSOM.FD that seems as a mass mailing computer worm, but a detailed analysis of it has revealed that it contains a deadly payload. It has been discovered that
WORM_RANSOM.FD downloads from remote websites when visitors access those sites or it may download secretly by other malware on the targeted system. While the deadly payload does not affect some files with
extensions such as .dry, .rwg, .vxd, .dll, .inl and .exe, the malware is
capable of encrypting all files stored in the targeted computers using Blowfish algorithm. Hence, the malware makes the files useless. Moreover, the worm makes a registry entry (ies) that allows it to do automatic execution whenever the system startup. Interestingly, the new ransomware WORM_RANSOM.FD does not follow the function of a typical
ransomware which demands money for restoring encrypted files. Instead it gives a user three options to choose from to restore the affected files. More....