A brand new version of notorious Dharma ransomware is out and it is called Arrow ransomware. On the other side, Dharma ransomware is just a clone of CrySis virus, thus those 3 viruses are very similar to each other. As always, the name reflects the extension of ransomware virus, so in this case it is .arrow.
The very fact that Arrow virus is similar to infections that we have examined before doesn’t make things easier – it is still lethal and can cause severe damage to your system. The best way to deal with viruses like this is not to get infected in the first place, but assuming you are reading this article, Arrow ransomware is already on your computer
The main goal of Arrow virus is to infect your computer, apply specific cryptography to lock your files and then as for a ransom to unlock them. That is how cyber criminals behind this virus make money. This article is dedicated to educate you about Arrow ransomware and ransomware in general, as well as provide you with possible solutions to this problem. So in case it is relevant to you, please keep reading.
.arrow extension to encrypt your files
We have already mentioned that this specific infection will add .arrow extension to the end of encrypted file, but to be more specific, the extension will also include unique ID generated to your computer and email address of this ransomware. So if you had a file named “picture.jpeg”, after the encryption of Arrow virus it will look like “picture.id-xxx.[[email protected]].arrow”.
Once the file is tagged with this particular extension, it is game over – you won’t be able to open or use that file in any other way. The sad truth is that .arrow infection is capable of encrypting almost all personal files, regarding of the file type. This virus employs strong cryptography that can’t be decrypted by some free decryptor. For that reason, cyber criminals ask you to contact them via email [email protected].
Most probably you will be asked to pay a ransom in Bitcoins. We do not know how much you will be asked to pay, but regardless of the amount, it is not worth it. Paying the ransom can result in being scammed, as crooks might simply ignore you after that. Also, this way you would support cyber criminals and that is not a good thing to do.
In case you are wondering how this virus managed to get inside of your computer, the answer is clear – Arrow ransomware is traveling as an attachment to spam emails. Cyber criminals launch massive spamming campaigns and send out millions of emails to random email addresses. Even though most of them land in spam folders, some of users still manage to open attachments and get infected.
We have some good news and bad news for you – you can only retrieve your files only if you have a valid backup of hard drive that was made before the infections, but you can remove Arrow ransomware itself pretty easily.
First things first – remove the virus from your computer. You can do that by scanning it with Spyhunter. Either one of those programs should effectively detect and remove infection instantly. You can use other anti-virus or anti-malware tools of your choice as well.
Now, the only way to recover files encrypted by Arrow ransomware is to restore them from a back up. If you do have one, please read these instructions and recover your files.
Automatic Malware removal tools