Banta ransomware is part of the Phobos ransomware family, which has been responsible for numerous attacks over the years. Banta is developed in .NET language and uses AES encryption.
Banta acts as a Trojan horse to break into the victim’s system, the file is downloaded through emails, pirate download sites and others.
The file, apparently, looks normal, but the ransomware is hidden in it and once it is downloaded, the ransomware installs itself and starts disabling programs that could interrupt the encryption process.
The ransomware can target Databases, Servers, Storages, Virtual Machines, RAID systems, these are the main targets of the group.
Through encryption access to data is blocked preventing the opening of files, the extension .banta is added to all affected files.
After encryption is completed, a file is created and placed on the desktop, where the victim’s information is recorded so he or she can contact the criminals to pay the ransom.
The payment is made through cryptocurrencies, because they are practically untraceable. The e-mails used by the group are “[email protected] and [email protected]”.
Recover Files Encrypted by Banta Ransomware
Digital Recovery has been in the recovery market for over 23 years, developing unique technologies to recover files encrypted by ransomware.
Recovery can be performed on Databases, Servers, RAID Systems, Storage, Virtual Machines, and other devices. Our processes are customized, and can be adapted to any ransomware extension that has made the attack.
All processes were developed based on the General Data Protection Regulation (GDPR), through which we guarantee total security of the recovered data.
We are used to acting in cases of high complexity, the whole process is highly confidential guaranteed by the confidentiality agreement (NDA).
We can recover data remotely, contact us and start the recovery process right now.
