Wednesday, October 9, 2019

Calix ransomware - A version of Phobos ransomware

If your documents, pictures, or files are encrypted with a [decrypthelper2020@protonmail.com].calix extension, then your computer is infected with the Calix ransomware.
Calix is a malicious virus that encrypts files on the device or database that has been infected. It is a ransomware version of Phobos that was first found on October 3rd, 2019. The ransomware uses AES / RSA ciphers to lock victim data, tag files with.[Victim ID].[deccrypthelper2020@protonmail.com].calix extensions, and leave info.txt and info.hta ransom notes. Such files contain instructions on how to get the file decryptor and pay a ransom.
When installed the malicious program encrypts all servers, records, images, programs and other files in order to prevent the user from accessing them again.The program is intended to cause the user to be frustrated because it is no longer possible to open.calix file extension files.

The virus then