QQLC Ransomware Joins the STOP/DJVU Ransomware Family
QQLC Ransomware is a file-encrypting infection that has joined the STOP/Djvu Ransomware family. It targets important file types that include documents, videos, databases, and photos. After it has been launched, the encryption algorithm will not affect system files. This is because the hackers need your system to work so you could transfer the ransom payment.
Files encrypted by QQLC Ransomware receive the telltale ‘.QQLC’ extension at the end of their names, and victims will soon find a ransom note left by the hackers on their desktop. The ransom note is titled “_readme.txt.” It instructs victims to contact the hackers via restorealldata@firemail.cc and gorentos@bitmessage.ch or through the Telegram account @datarestore.
The note instructs victims to pay either $980 or $490 in Bitcoin for file decryption. The lower ransom amount applies if the initial contact with the hackers is made within the first 72 hours after infection. The QQLC Ransomware operators will also offer users one free file decryption to prove they can unlock all affected files.
Unfortunately, a free or online decryption tool, that could restore files affected by QQLC Ransomware, is not available at the moment. The only reliable way to recover encrypted files is to restore them from a backup. You may also research the Web for alternative data recovery options, yet, there’s no guarantee that alternative data recovery tools can unlock all the encrypted files.
Although it may seem that the easiest path to restoring your files is to cooperate with the hackers, we never recommend communicating with them. It’s possible that you may never receive a decryption key even if you pay them.
How Do I Remove QQLC Ransomware?
You can scan for and remove elements associated with QQLC Ransomware by using a reputable malware remediation application. To protect your files from similar attacks in the future, you should back them up on a cloud or external hard drive.
