icon-logo
  • Ransomware, Ransomware

Exorcist Ransomware

Exorcist ransomware has surfaced on Russian dark web forums looking for affiliates willing to carry out attacks with its malware, the group offers 70% of the ransom to its affiliates.

This tactic is called RaaS (Ransomware as a Service) which is the outsourcing of attacks, is used to expand the group’s influence. Affiliates have some freedom to carry out attacks, one of the few restrictions being attacks on countries that are members of the former Soviet Union.

Several ransomware groups treat these countries with a certain amount of fear, the best explanation is that these groups control their attacks from these countries, and do not want the attention of the authorities, so they mainly target Western countries.

Exorcist uses AES 256 + RSA 4096 encryption, this combination of algorithms increases the reliability of the encryption, making it virtually impossible to break without the decryption key that the group keeps on a remote server.

All files affected by the ransomware are given an extension with a sequence of random characters, this extension is the same for all files, and the ransom note also carries in its name the random characters.

On the ransom note are all the necessary information for the victim to contact the criminals and pay the ransom, even though the group does not give any guarantees whether they will actually release the decryption key after payment.

Recover files encrypted by Exorcist ransomware

Digital Recovery specialises in the recovery of data encrypted by ransomware, without the need for the decryption key. We have over 23 years of experience in the data recovery market.

We act in the most complex scenarios of data loss by ransomware attacks, we act with high precision and agility.

Our solutions are customised to best suit the real needs of each of our clients. All of them were developed based on the General Data Protection Regulation (GDPR).

We do not negotiate with hackers, we keep all information about the process confidential, we guarantee this through the confidentiality agreement (NDA).

We develop technologies that can be applied remotely, our solutions can be executed in companies all over the world.

Contact us and start data recovery now.

Editorial Team

Editorial Team

Team Digital Recovery is composed of data recovery specialists who, in a simple way, aim to bring information about the latest technologies on the market, as well as inform about our ability to act in the most complex data loss scenarios.

Digital Recovery helps businesses recover data

TALK TO A SPECIALIST

Check out other posts

We are
always online

Please fill out the form, or select your preferred contact method. We will contact you to start recovering your files.

Latest insights from our experts

Recuperar memoria flash

What is Flash Memory?

Since its invention in the 1980s, Flash memory has revolutionised digital data storage. Essential for mobile devices, digital cameras, storage units and more, it combines

READ MORE →
All Variants
Successful cases
Recover Ransomware

Through unique technologies Digital Recovery can bring back encrypted data on any storage device, offering remote solutions anywhere in the world.

Talk to an Expert
Single
Virtual Machine
Storage
Raid System
Special Cases
Database
Tape
Cybersecurity
Digital Forensik
4D-Pentest

Discover the invisible vulnerabilities in your IT – with the 4D Pentest from Digital Recovery

Talk to an Expert
Select your country