What is GOGO ransomware?
GOGO is a ransomware-type virus; a program that engages in the malicious practice known as digital ransom. There are many resources written about ransomware, as it is a very harmful practice that affects everyone, from individuals to large industries.
Consult this article by National Cyber Security Centre of the United Kingdom if you want to know more about ransomware in general; this article will focus on GOGO virus in particular.
GOGO belongs to VoidCrypt ransomware family, alongside RYKCRYPT, Zendaya, and many other viruses. They are generally similar to each other, which is why there’s so many of them.
GOGO’s main distinguishing feature is .GOGO file extension. Files encrypted by the virus get renamed: a unique ID and the hacker’s e-mail both get added to the old file name, and so does the aforementioned file extension. GOGO’s ransom note, on the other hand, is not unique. It is named “unlock-info.txt” and can be read on the image above.
NCSC doesn’t recommend paying the hackers, and neither do we. It is risky; you don’t know whether you’ll get your files back or not. Some alternatives solutions are listed in the guide below. It will explain how to remove GOGO ransomware and decrypt .GOGO files without paying the criminals.