The Avest ransomware encrypts victim’s files and appends the extension “.ckey().email().pack14” to the filename.
Below the text of the ransom note “!!
"Problems with your data? Contact us: data1992@protonmail
[. ] comkey: <victim specific>”
The decryption tool could be used by the victims only after they have successfully removed the malware from their system to avoid that the
Victims of the Avest ransomware can download the
In August, security researchers at Emsisoft released a decryptor tool that allows the victims of the JSWorm 4.0 ransomware to decrypt their files for free. In May Emsisoft experts released a free Decrypter tool for the JSWorm 2.0 variant.
(SecurityAffairs – Avest ransomware, hacking)