No antivirus can detect Cryptowall 4.0, protect from it using Vaccine released by Bitdefender. The fourth version of Cryptowall ransomware, Cryptowall 4.0 has surfaced, this ransomware normally spreads via drive-by-attacks and spam emails has gotten even stronger encryption algorithms than its predecessors, that’s why it’s hard for any antivirus solution to detect it.
Bitdefender claims Russian hackers are behind this Cryptowall 4.0 and during their investigation they’ve learnt that”encryption algorithm used is AES 256. The key is encrypted using RSA 2048″
Cryptowall 4.0 vaccine
According to Bitdefender, Cryptowall 4.0 has targeted these countries: France, Italy, Germany, India, Romania, Spain, US, China, Kenya, South Africa, Kuwait and the Philippines. “Russian users seem to be safe. The malware doesn’t proceed with the encryption process if it detects Russian as a keyboard language.”
If you’re infected with this ransomware, you can’t do much, you either have to format your system or pay ransom to get the decryption key, there is no guarantee that you’ll get decryption key even after paying the ransom which is not recommended.
Bitdefender has released an antidote, Bitdefender anti-ransomware aka AntiCryptowall, users can install it. For the tool to block file encryption attempts by Cryptowall 4.0 users need to enable immunization.
Note: “If your computer is already infected with CryptoWall 4.0, the vaccine will not help disinfect it. The tool should be installed and used as a proactive measure against this specific strain of ransomware.”