PayMe100USD is a malicious ransomware strain that encrypts victim files and demands ransom payment for decryption. First observed in the wild on March 1, 2023, this ransomware has been actively targeting systems worldwide.
Quick Facts
Ransomware Family
PayMe100USD
First Seen
March 1, 2023
How PayMe100USD Ransomware Works
File Encryption Patterns
PayMe100USD modifies encrypted files using specific patterns to mark them as encrypted:
File extensions added after encryption:
..PayMe100USD
Ransom Note and Payment Demands
After encrypting files, PayMe100USD displays ransom notes demanding payment for file recovery:
file/\bPayMe0000000\d\.txt\b/
Ransom message:
notes/PayMe00000006.txt
Note locations:
Desktop
Technical Indicators
Associated Executable Files
The following executable files are associated with PayMe100USD ransomware:
100usd
Elastio Can Help You
Don't let PayMe100USD ransomware take over your data
Elastio provides advanced ransomware protection and recovery solutions to keep your organization safe.
This PayMe100USD ransomware analysis is part of Elastio's comprehensive ransomware detection database. Elastio provides advanced ransomware protection and recovery solutions, helping organizations defend against and recover from ransomware attacks like PayMe100USD.