.NULL File Extension
Null Ransomware Encrypted File
Developer | N/A |
Popularity |
3.4 | 1094 Votes |
What is a NULL file?
A file with a .null extension is a file that has been encrypted by the Null virus, which is a variant of Stop and Djvu ransomware that became prevalent in August 2017. It is encrypted with AES-256 algorithm so it is not possible to open the file by simply changing the .null file extension.
More Information
Null is a type of malware utilized by cybercriminals that takes a user's files hostage and forces him to pay the perpetrator to unlock the files. It is most often introduced to a victim's computer through spam emails with malicious file attachments that are downloaded and run by unsuspecting users. These email attachments may be JavaScript .JS files or .DOCX files with macros that appear to be normal attachments but they actually contain the Null virus.
When the ransomware runs on a user's computer, it encrypts files on the computer and adds the .null extension onto the names of the files. The targeted files are typically documents, images, videos, and backup files, such as .DOCX, .JPG, .MP4, and .DB files. For example, a spreadsheet.xlsx file becomes spreadsheet.xlsx.null.
The virus then generates a pop-up window with several tabs explaining the hostile takeover of the user's files. The tabs include information about what occurred to the computer, the encryption used on the files, the list of encrypted files, how the user can recover his files, and how the user can make the Bitcoin ransom payment.
How to open a NULL file
Currently, there are several options for removing the Null virus, such as Malwarebytes Premium software. However, there is no program available to effectively restore infected files. The best way to recover your files is to retrieve them from a recent backup or perform a System Restore to a point before your computer was infected.
Warning
FileInfo.com recommends you never pay a ransom to decrypt files encrypted by ransomware. Paying a ransom encourages ransomware distributors to continue their efforts, and there is no guarantee that paying a ransom will give you access to your files. Instead, you should restore your data from a recent backup created before the ransomware infected your computer.