Ransomware Midas

The Midas ransomware is one of the variations of the Thanos ransomware that has emerged recently, Thanos was a large group that emerged in 2020, after numerous attacks the group disappeared, after a few months the malware’s source code was leaked, from this leak emerged the Prometheus, Spook, Haron, and the newest ransomware of the group, Midas.

There is still little information about how these ransomware are related, other than that they are variations of Thanos. What can be said is that they are all extremely powerful, and have accumulated numerous successful attacks.

Speaking specifically about Midas, the group works with the RaaS (Ransomware as a Service) tactic, their malware has been sold on the web forums, as well as maintaining a website for leaking the stolen files of the victims, the group works with the tactic of double extortion.

After Midas invades the victim’s system, the malware shuts down all programs and functions that could detect it or interrupt the encryption process.

The encrypted files are given an extension that is the name of the company itself, these files can only be opened with the help of the decryption key. When the encryption process is finished, a decryption key is generated, which in turn is also encrypted.

A text file is left with the ransom terms and threats if payment is not made, even though the group demands payment of the ransom they have no guarantee that the decryption key will actually be delivered to the victim or if it actually works.

Recover files encrypted by Midas ransomware

Digital Recovery specializes in the recovery of data encrypted by ransomware in virtually all data storage devices, such as databases, storages, RAID systems, virtual machines, servers, among others.

We have been in the data recovery market for more than 23 years, and we have the necessary know-how to act in the most complex data loss scenarios. Few scenarios are as complicated as a ransomware attack.

Our solutions are unique and can be applied remotely in any company in the world.

To speed up the recovery process we developed the emergency recovery mode, in this mode our labs work with 24x7x365 availability.

During the whole process you will be accompanied by one of our specialists who will be able to explain any doubts about the process, and we also provide a confidentiality agreement (NDA) to all our customers.

Contact us and start the recovery right now.

We are always online

Please fill out the form, or select your preferred contact method. We will contact you to start recovering your files.

Latest insights from our experts

Recuperar memoria flash

What is Flash Memory?

Since its invention in the 1980s, Flash memory has revolutionized digital data storage. Essential for mobile devices, digital cameras, storage units and more, it combines


Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.

Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery