is a crypto-ransomware variant created in Russia that appends encrypted data files with an .XTBL
extension to the end of each filename using GNU Privacy Guard (GPG)
Cryptography, a data encryption and decryption program. GPG uses the OpenPGP standard
which includes symmetric as well as asymmetric encryption. In later versions, Kaspersky lab advises the malware added the infected computer’s ID and then the .xtbl extension to the file name like this example... ArSxrr+acw970LFQw.043C17E72A1E91C6AE29.xtbl. According to ESET, the newer variants append an additional .<id-random>.<email>.xtbl extension.
There is an ongoing discussion in this topic where you can ask questions and seek further assistance.
Rather than have everyone with individual topics, it would be best (and more manageable for staff) if you posted any more questions, comments or requests for assistance in the above support topic discussion...it includes experiences by experts, a variety of IT consultants, end users and company reps who have been affected by ransomware infections.
To avoid unnecessary confusion, this topic is closed.
The BC Staff