This is the message the victims get:
- The sum asked by the attackers is, at this writing, a ridiculous $270,000;
- Said attackers do not in fact know how to decrypt your files.
No one has paid; this is a good thing, even for victims laden with cash, since the attackers cannot decrypt files because encryption keys are not saved locally or transmitted to command and control servers.
“Let us emphasise that the cyber criminals behind this KillDisk variant cannot supply their victims with the decryption keys to recover their files, despite those victims paying the extremely large sum demanded by this ransomware,” ESET researchers Robert Lipovsky and Peter Kalnai say.
Greedy and incompetent. I see a political future for these crooks.