Popcorn Time ransomware invites you to get 'nasty' to recover your files

Are you so desperate to recover from a ransomware attack that you would infect other computer users?

Popcorn ransomware

Want to fix your ransomware-hit computer but don't want to pay up for the decryption key?

Well, as Bleeping Computer describes, the Popcorn Time ransomware has an answer for you. If you want your files back, but won't/can't pay the ransom the ransomware's operators will give you free decryption keys if you infect your friends via referral links.

Dirty tricks

Yep, the bad guys behind Popcorn Time say that if you manage to infect two other people with their malware and if they then pay the ransom, then you'll be able to get your decryption key.

Oh, and congratulations by the way. As well as becoming an affiliate of a ransomware gang, you've just committed a criminal act.

I hope no-one would be so dumb as to risk earning a criminal record (and potentially a prison sentence) by infecting someone else's computer with ransomware, but then we all know far too well that people are prepared to do terrible things via the internet that they would never consider doing to someone face-to-face.

Oh, and by the way, how do you know the ransomware's authors will honour their offer and send you the decryption key for infecting more users? After all, they've already proven themselves to be scumbags by spreading Popcorn Time in the first place. They're hardly the most trustworthy people on the planet.

Don't become a ransomware affiliate. Protect your computer with a layered defence, and get a proper backup regime up and running for goodness sake.

Tags: , ,

Subscribe to the free GCHQ newsletter

, ,

Leave a reply

8 Comments on "Popcorn Time ransomware invites you to get 'nasty' to recover your files"

Notify of
avatar
Sort by:   newest | oldest | most voted
Rajiv
Visitor
Rajiv

Always enjoy reading your write ups. Thanks!

Tony
Visitor
Tony

I'd suggest that you spin up a couple of VMs, infect them yourself, and bag a free decryption key at no one else's expense. Bosh.

Kevin
Visitor
Kevin

I thought the same thing, Tony, but lots of these horrendous programs don't execute in a VM environment, they know there is a chance it is being analysed… so just dig out two crappy old laptops/raspberry pi's/whatever and infect those? :)

Nick
Visitor
Nick

This is a different Popcorn Time to the one most people are familiar with. To avoid confusion, it would be worth including in your article this statement from the Bleeping Computer article you refer to:
"It should be noted, that this ransomware is not related to the Popcorn Time application that downloads and streams copyrighted movies."

Topiux
Visitor
Topiux

ElevenPaths discovers the Popcorn ransomware passwords: no need to infect other people to decrypt for free http://blog.elevenpaths.com/2016/12/elevenpaths-discovers-popcorn.html

wpDiscuz