Bitcoin Ransomware Education – I’m Sorry

Most types of crypto-ransomware are both aggressive and brutal at the same time. Users see files encrypted and they receive brief notes on making a Bitcoin transfer to receive the decryption key. I’m Sorry ransomware is quite a different breed in this regard, as it is the most apologetic type of malicious software we have seen so far. That does not mean anyone should have sympathy for the person responsible for creating it, though.

I’m Sorry Ransomware Claims to be Truly Sorry

Do not be mistaken in thinking this particular ransomware strain will not harm your computer. Similar to all other types of malicious software of this kind, it will infect a computer and slowly start encrypting files. Moreover, it will display a clear ransom note asking users to make a $500 payment in Bitcoin to a random address. So far, I’m Sorry is nothing out of the ordinary.

The ransomware is also more than capable of renaming files to the “.imsorry” extension, which makes it difficult for victims to retrieve their data. What truly sets this malware apart, however, is the ransom note it presents to its victims. It is written in an apologetic manner, in the hopes of making people feel compassion for the person responsible for keeping their computer hostage. Such an approach may work with certain people, yet no one should sympathize with ransomware developers whatsoever.

The $500 Bitcoin demand is quite a steep one these days. Most other types of ransomware charge half of that amount, or even less. Very few people will part with $500 willingly, even if it means possibly losing access to all of their files. I’m Sorry explains how people should get Bitcoin, as users are referred to either Coinbase or LocalBitcoins. It also explains how people would create a wallet at Blockchain.info. Interestingly enough, it even includes a few links to posts explaining Bitcoin, which is quite interesting.

Even though the I’m Sorry ransom message starts off in an apologetic manner, things get a lot darker near the end. One of the final sentences mentions how “if you fuck around, I’ll delete your key”. That leaves nothing to the imagination. Moreover, it also highlights why no one should feel sorry for the developer or themselves while dealing with this malware. Even though users have three weeks to pay the Bitcoin demand, no one should buy bitcoin to complete this procedure under any circumstances.

As we come to expect these days, the I’m Sorry ransomware is distributed through third-party downloads, including the BitTorrent protocol. Free file hosting websites may also host ransomware-infected files for download. It is possible this ransomware is also making the rounds through target spam campaigns, albeit that has not been confirmed at this time.

It does not appear a free decryption tool is available for the I’m Sorry ransomware as of right now. However, it is possible to get rid of the ransomware by booting into safe mode. It is unclear if data can be recovered from a previous backup, albeit it is a distinct possibility right now. Anti-spyware tools should be able to remove the I’m Sorry ransomware from your computer, although your mileage may vary.

If you liked this article, follow us on Twitter @themerklenews and make sure to subscribe to our newsletter to receive the latest bitcoin, cryptocurrency, and technology news.