Ransomware Onyx

Onyx ransomware is the newest group to emerge on the cyberattack scene, the group has generated a great deal of trouble for its victims, on its website the group already has six companies listed as victims. The group’s malware has not only encrypted files, but has corrupted them as well.

The group’s malware is designed to encrypt files smaller than 2 MB, larger files are destroyed. Even after paying the ransom and receiving the decryption key, these files cannot be recovered.

This is one of the most damaging tactics in recent years, the group does not appear to care about their image or the possibility of victims not paying the ransom, the group is highly destructive.

Onyx has many similarities to the Conti ransomware, one of the most active groups in recent years, but also appears to be a variant of the Chaos ransomware.

Despite these differences Onyx ransomware acts like other ransomware, adding the .ampkcz extension to all affected files, and generating a document with ransom terms.

The victim is forwarded to a .TOR site where they can contact the criminals to pay the ransom, this payment is usually made with cryptocurrencies. Remember that this is not recommended in any way.

The recovery of files encrypted by the Onyx ransomware is extremely complex, due to the fact that the group corrupts the files, but recovery is possible. Digital Recovery specializes in the recovery of files encrypted by ransomware.

Recover files encrypted by Onyx ransomware

Digital Recovery has been in the data recovery market for over 23 years, developing unique technologies for file recovery, whether deleted, corrupted or encrypted.

We can recover encrypted data from most storage devices, such as databases, storages (NAS, DAS, SAN), RAID systems, servers, virtual machines and others.

All our solutions were developed by our specialists and are exclusive, and can be applied remotely to any company in the world.

We are able to remotely recover data in a totally secure environment without any external interference.

We can start the recovery right away, request an initial advanced diagnostic, and within a few days you will have your data back.

Digital Recovery helps companies recover data

Check out other posts

We are always online

Please fill out the form, or select your preferred contact method. We will contact you to start recovering your files.

Latest insights from our experts

AtomSilo Ransomware

Ransomware AtomSilo

The AtomSilo ransomware emerged in September 2021, the group acts a little differently than other ransomware groups, the ransom amount is fixed, $1 million is

Khonsari Ransomware

Khonsari Ransomware

The Khonsari ransomware was the first group to exploit known Apache Log4j vulnerabilities (CVE-2021-44228 and CVE-2021-45046), the group has focused its attacks on Windows servers that


Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.