What is TripleM (MMM) Reborn v4 Ransomware?
Today we will look at how to remove TripleM (MMM) Reborn v4 Ransomware and decrypt .mmm files, as well as the reasons why you need it. TripleM (MMM) Reborn v4 Ransomware is a cryptovirus that comes to the user’s PC, either bundled with other programs or as an attachment to a spam mailing list. TripleM (MMM) Reborn v4 Ransomware encrypts user data and changes their extension to .mmm after the changes are made files become unsuitable for further use and unreadable. Moreover, TripleM (MMM) Reborn v4 Ransomware creates a special text file, which contains information about the methods of redemption and the requirements of the attackers.
*******************************************
*******************************************
+++++TRIPLEM(MMM) REBORN RANSOMWARE v4+++++
*******************************************
*******************************************
============================================
++++++++What happened to your files?++++++++
============================================
Your stupid IT Dept. not secure your systems
and all of your files were encrypted.
Your files were encrypted by a
strong encryption with RSA2048.
YOU HAVE ONLY 72 HOURS FOR GET YOUR FILES!
____________________________________________
============================================
+++++++++++++++What do I do?++++++++++++++++
============================================
So,there are two ways you can choose: wait
for a miracle and get your price doubled,
or start obtaining BITCOIN NOW and restore
your data easy way.
If you have really valuable data, your better
not waste your time, because
there is no other way to get your files, except
payment.
You can send to mmm_reborn@tutamail.com 2-3
random files < 2mb and we decrypt it for free.
WITHOUT IT YOU CAN`T RESTORE YOUR FILES
!!!DO NOT TRY RESTORE YOUR FILES.
!!!DO NOT USING DIFFERENT DECRYPTION SOFTWARE.
!!!FILES MAY BE DECRYPTED ONLY WITH OUR SOFTWARE.
=====================================
++++++++YOUR PERSONAL DETAILS++++++++
=====================================
YOUR DECRYPTION PRICE FOR ALL ENCRYPTED WORKSTATIONS:
IF YOU PAY WITHIN 5 DAY – 2 BITCOIN
IF YOU NOT PAY WITHIN 5 DAY – Your decryption keys has been deleted
WALLET ADRESS:1MMMbgkgSS82t4WC4YkXMVCsWAawnrzUpP
UNIQ USER ID: PCFID6521
=====================================
+++++++++++++INSTRUCTION+++++++++++++
=====================================
1)Buy Bitcoin on btc exchange sites (Coinbase,
Localbitcoins, Coinmama and another).
For buy Bitcoin you need confirm your Identify.
Buy Bitcoin offline in ATM or from seller
https://coinatmradar.com/
2)Send BITCOIN to your personal wallet adress
1MMMbgkgSS82t4WC4YkXMVCsWAawnrzUpP
3)Write us to email mmm_reborn@tutamail.com
in subject write your UNIQ USER ID
4)After we confirm payment – we send you
decryption software and Private Key for
decrypt your files.
*******************************************
*******************************************
+++++TRIPLEM(MMM) REBORN RANSOMWARE v4+++++
*******************************************
******************************************
The note is written in English, and the cryptovirus itself is aimed at English-speaking users, however, more and more users from different parts of the world report that their computers are infected with TripleM (MMM) Reborn v4 Ransomware. Moreover, fraudsters point out the need to pay a redemption, the amount of which is 2 Bitcoins (at the current rate it is about $ 20,965.20). This is an exorbitant amount. The attackers intimidate the user, saying that if the ransom is not paid within five days, then the decryption key will be lost forever. No need to pay anyone! Check out our instructions to remove TripleM (MMM) Reborn v4 Ransomware and decrypt .mmm files.
Update: Use following service to identify the version and type of ransomware you were attacked by: ID Ransomware. If you want to decrypt your files, please follow our instruction below or, if you have any difficulties, please contact us: submit@securitystronghold.com. We really can help to decrypt your files.
How to remove TripleM (MMM) Reborn v4 from your computer?
You may try to use SpyHunter anti-malware tool to remove TripleM (MMM) Reborn v4 ransomware from your computer. Newly advanced ransomware detection technology is able to run an instant ransomware scan, which is perfect to protect your computer in case of a new ransomware attack.
SpyHunter provides an opportunity to remove 1 detected malware for free during trial period. The full version of the program costs $39,99 (you get 6 months of subscription). By clicking the button you agree to EULA and Privacy Policy. Downloading will start automatically.
How to decrypt .TripleM (MMM) Reborn v4 files?
Once you’ve removed the virus, you are probably thinking of recovering files from encryption. Let’s take a look at possible ways of decrypting your data.
Recover data with Data Recovery
- Download and install Data Recovery
- Select drives and folders with your files, then click Scan.
- Choose all the files in a folder, then press on Restore button.
- Manage export location.
Restore data with automated decryption tools
Unfortunately, due to the novelty of TripleM (MMM) Reborn v4 ransomware, there are no available automatic decryptors for this encryptor yet. Still, there is no need to invest in the malicious scheme by paying a ransom. You are able to recover files manually.
You can try to use one of these methods in order to restore your encrypted data manually.
Restore data with Windows Previous Versions
This feature is working on Windows Vista (not Home version), Windows 7 and later versions. Windows TripleM (MMM) Reborn v4s copies of files and folders which you can use to restore data on your computer. In order to restore data from Windows Backup, take the following steps:
- Open My Computer and search for the folders you want to restore;
- Right-click on the folder and choose Restore previous versions option;
- The option will show you the list of all the previous copies of the folder;
- Select restore date and the option you need: Open, Copy and Restore.
Restore the system with System Restore
You can always try to use System Restore in order to roll back your system to its condition before infection infiltration. All the Windows versions include this option.
- Type restore in the Search tool;
- Click on the result;
- Choose restore point before the infection infiltration;
- Follow the on-screen instructions.
Written by Rami D