What is ESCANOR ransomware?
ESCANOR is a malicious program that makes money via ransom (that’s why it’s called ransomware). Once on the victims’ computers, this program encrypts all the files using a cryptographic algorithm. This renders them inaccessible – you cannot view or edit the encrypted files – but this process can be reversed. However, to decrypt the files you will need a cryptographic key, a password essentially. This is how this ransom works. The hackers know how to decrypt the files, and if you want them to do it, you will have to pay quite a lot.
All files encrypted by ESCANOR ransomware have their filename modified; the string “.ESCANOR” gets appended to the end of the name, thus giving them .ESCANOR file extension.
To communicate its demands ESCANOR creates a ransom note called “HELP_DECRYPT_YOUR_FILES.txt” on the Desktop. You may read the full text above, but the gist is, the hackers want $980 for decryption, and they want it in Bitcoin.
This is quite a significant sum, and to add insult to the injury, many hackers do not bother decrypting victims’ files after receiving the money. Our guide will explain how to remove ESCANOR ransomware and decrypt .ESCANOR files without engaging with these criminals.