MKP ransomware is a variant of the Makop ransomware, which like other ransomware has strived to create a family/cartel.
MKP has already emerged with all the structure that Makop built with its attacks, this completely changes the shape and potential of a newly created group.
MKP ransomware uses two main ways to break into the victim’s system, which are spam email and Trojans. The spam email is sent containing attached files that need to be downloaded, usually these emails are forged to appear to be from a known company.
The attached files appear to be simple Word documents, Excel, .ZIP, .RAR, PDF etc. These are files that are downloaded constantly on a daily basis, criminals take advantage of this to go undetected.
After the ransomware is downloaded, it quickly hides and initiates protocols to disable all operating system countermeasures and begins mapping the files that will be encrypted.
All files affected by MKP receive the extension a .[87C29B86].[email@example.com].mkp, after receiving this extension the files can no longer be opened, it will require a decryption key that only the criminals possess.
After the encryption of the files is completed, a file called “+README-WARNING+.txt” is generated. It describes the conditions for the victim to recover his files and contact the criminals to pay the ransom.
The payment is made in cryptocurrencies, but even with the payment there is no guarantee that the decryption key will be released. Therefore, payment is not recommended under any circumstances.
Paying the ransom is not the only way to get your files back, recovery of data encrypted by ransomware is possible. Digital Recovery is capable of that.
Digital Recovery specialises in the recovery of data encrypted by ransomware. We do not negotiate with hackers, we can recover files even without the decryption key.
We have developed unique technologies that are capable of recovering files on Database, Servers, Storages, RAID Systems and others.
Our processes were developed by our experts and are in accordance with the General Data Protection Regulation (GDPR), through this agreement we guarantee total security in the process of data recovery.
We guarantee the confidentiality of information through the confidentiality agreement (NDA).
We can recover data from anywhere in the world through remote recovery, with it the process is accelerated. We also have emergency recovery mode, in which mode our laboratories operate with 24×7 availability.
Contact us and start the recovery right now.