Adame Ransomware Encrypted File
4.0 | 5 Votes
What is an ADAME file?
Adame is a type of malware utilized by cybercriminals that takes a user's files hostage and forces him to pay the perpetrator to unlock the files. It is most often introduced to a victim's computer through spam emails with malicious file attachments that contain macros and are downloaded and run by unsuspecting users. The virus may also be introduced when a user clicks on malicious online advertisements or downloads malicious files from torrent websites.
When the ransomware runs on a user's computer, it encrypts files on the computer and adds the .adame extension onto the names of the files. The targeted files are typically documents, images, videos, and backup files, such as .PDF, .PNG, .MP4, and .DB files. For example, a picture.png file becomes picture.png.adame.
The virus then generates an info.hta and info.txt file on the desktop of the user's computer. The info.hta file contains an HTML program that displays a pop-up window explaining the hostile takeover of the user's files. The info.txt file is the plain text version of the HTML program. The information in the two files includes an explanation about what occurred on the computer, the encryption used on the files, and how the user can recover his files by paying a ransom payment.
Common ADAME Filenames
example.docx.id[1K748H90-3283].[[email protected]].Adame - Example of an ADAME file with the ID assigned to the victim and email address of the virus developer appended onto the file extension.
How to open an ADAME file
Currently, there are several options for removing the Adame virus, which includes Malwarebytes Premium software. However, there is no program available to effectively restore infected files. If the user has a recent backup of his files, he can perform a system restore to remove the virus but any changes made to files after the backup was made will be lost.
FileInfo.com recommends you never pay a ransom to decrypt files encrypted by ransomware. Paying a ransom encourages ransomware distributors to continue their efforts, and there is no guarantee that paying a ransom will give you access to your files. Instead, you should restore your data from a recent backup created before the ransomware infected your computer.