Files encrypted will have the explicit extension ".bleeped" (the F word), and a ransomnote called "READ_IT.txt" is dropped on the desktop with the following contents.
Files have been encrypted Send me some bitcoins to decrypte your files Contact firstname.lastname@example.org for more information and deal!
The following is a list of extensions targeted by this ransomware.
.asp, .aspx, .csv, .doc, .docx, .html, .jpg, .mdb, .odt, .php, .png, .ppt, .pptx, .psd, .sln, .sql, .txt, .xls, .xlsx, .xmlIf anyone has been hit by this ransomware, please post here. We may have a chance with decrypting files.
Edited by Demonslay335, 29 March 2016 - 12:49 PM.
Removed extra quote