One of our clients got hit last night and we're playing the recovery game.
ID Ransomware flags it as Cryptomix Revenge, but the .Backup extension doesn't seem to line up with this.
Able to upload both an encrypted and clean file if that would assist.
Ransom note follows:
Attention! All Your data was encrypted!
For specific informartion, please send us an email with Your ID number:
Please send email to all email addresses! We will help You as soon as possible!
IMPORTANT: DO NOT USE ANY PUBLIC SOFTWARE! IT MAY DAMAGE YOUR DATA FOREVER!