Dharma Ransomware Encrypted File
2.0 | 1 Vote
What is a DHARMA file?
Dharma ransomware is a type of malware utilized by cybercriminals that encrypts a user's files. After the ransomware takes the files hostage, it forces the victim to pay the perpetrator to unlock the files. It may be introduced to a victim's computer through spam emails with malicious links or file attachments, free file hosting websites, and Peer to Peer (P2P) networks.
When the ransomware runs on a user's computer, it encrypts files on the computer and adds the .dharma extension onto the names of the files. It also appends an [[email protected]] or [[email protected]] email address with the extension. The types of files typically targeted include spreadsheets, documents, images, videos, and backup files, such as .DOCX, .PDF, .JPG, .AVI, and .DB files. For example, a spreadsheet.xlsx file becomes spreadsheet.xlsx.[[email protected]].dharma or spreadsheet.xlsx.[[email protected]].dharma.
The virus then generates a README.txt file in each folder that stores an encrypted file on the user's computer. The README.txt file contains brief instructions explaining the hostile takeover of the user's files and how the user can is meant to recover their files by paying a ransom payment.
How to open a DHARMA file
No known program can restore DHARMA files to their original state. The best way to recover your files is to retrieve them from a recent backup or perform a System Restore to a point before your computer was infected.
FileInfo.com recommends you never pay a ransom to decrypt files encrypted by ransomware. Paying a ransom encourages ransomware distributors to continue their efforts, and there is no guarantee that paying a ransom will give you access to your files. Instead, you should restore your data from a recent backup created before the ransomware infected your computer.