qkG virus is officially listed as a ransomware infection, however, it is rather untypical one. First and foremost – it is targeting specifically word documents. To be more specific, this ransomware infection is not looking for word documents that are already on your computer – they are targeting Microsoft Word’s default template. The template is used to form every single new document on your computer, therefore every new file will eventually be encrypted.
This infection is definitely unique, because it operates using methods that are not common for other ransomware families. It’s on of the few viruses that are targeting specific document type and employing malicious macro codes. In most cases ransomware only use macros to download the files needed for the virus to be installed.
In fact this ransomware is so smart, that once inside of your system it will automatically lower security settings on Microsoft Word, thus it won’t ask to enable macros next time you open it, so the virus could successfully encrypt even more files. Cyber security researchers from 2-viruses.com made a guide how to deal with this QkG ransomware and avoid similar infections in the future, so if you are infected with this virus or simply concerned about your security online, we highly recommend reading it.
You might also be familiar with the fact that usually ransomware is adding unique extensions to encrypted files. However, in this case things are different – file name and extension will remain unchanged.
Moreover, it seems like this ransomware is still in the beta or development mode, thus it’s possible that once cyber criminals finish their job, QkG ransomware will be capable of encrypting more file types or causing other sorts of cyber security problems. As for now, it is exclusively targeted to Microsoft Word documents, demanding 300 USD as a ransom.
As always, if you are looking to stay away from trouble online, make sure that your computer is protected with a real-time anti-malware security and always pay attention to the files that you are downloading to your computer from the Internet – whether it’s an attachment to the email or some sort of software you decided to install after noticing a banner advertisement on the web.