Relec Ransomware is a computer infection that is meant to give you a good scare. This “educational” ransomware cannot encrypt your files, but it can sure make you think that it did. This program changes your desktop wallpaper and displays an annoying pop-up that says you need to pay for a decryption key. Computer security experts say that it is really easy to remove Relec Ransomware, so you should never even consider paying for anything. If anything, this intruder is an indication that we might get similar acts in the future. And when those come around, they will definitely encrypt something.
Now, why are we so sure that this program could encrypt something? According to our research team, this infection is coded in the C++ programming language, and it DOES have the ability to encrypt files. If it does not encrypt anything, it means that your system has been compromised by the version that is not meant to encrypt data. However, there is always a possibility that cyber criminals could enhance this program to carry out a far more sophisticated attack. There is also a chance that Relec Ransomware can be used as the notorious Hidden Tear ransomware that serves as a framework for many malicious infections out there.
We can totally see that happen because Relec Ransomware (as an “educational” ransomware) is available at github.com/erhanbaris/Relec-Ransomware. It means that anyone could get a hold of the initial program and then enhance it. That is, provided; they know how to do it. So while the exact application we are dealing with here right now cannot affect your personal data, we believe that Relec Ransomware can be used to span more ransomware spin-offs with severe malicious intent. Hence, users need to be careful about what they download and what websites they visit.
Although the most common ransomware distribution method is spam emails, you might have gotten this program through random drive-by downloads or pop-ups you encountered online. Whichever it might have been, the installer file for Relec Ransomware is probably somewhere in your Downloads folder, unless you have another directory designated for the files you download.
When this program is launched, it will change your desktop background into a black screen with the letter H on it. This will make the impression that your system’s security has been terrible compromised. After that, Relec Ransomware will also display a pop-up that says the following:
Relect Ransomeware
Sorry But You Have Been Hacked
Send 1 bitcoin for keyBitcoin: YOUR BITCOIN ADDRESS
Key
As you can perfectly see, the infection looks more like a sketch rather than the real deal. And this sketch can very much so be used by other cyber criminals to create more ransomware programs.
To protect yourself from severe infections, you should save copies of your files on external backup drives and avoid opening attachments received from unknown senders. Also, paying attention to your web browsing habits could also be a good idea. There are a lot of compromised websites out there that could be used for ransomware distribution. If you need more information on how to protect yourself and your system from severe threats, please do not hesitate to leave us a comment below.
# | File Name | File Size (Bytes) | File Hash |
---|---|---|---|
1 | Relec Ransom.exe | 1108992 bytes | MD5: 9828ca0d37fe51db6fe42ae959d9b0bb |
# | Process Name | Process Filename | Main module size |
---|---|---|---|
1 | Relec Ransom.exe | Relec Ransom.exe | 1108992 bytes |