Eternity ransomware acts like a serious cyber threat, but it’s not

Eternity ransomware[1] is a crypto-virus that uses AES cipher to corrupt files on the affected computer and demands to pay $1000 for data recovery. The virus makes files inaccessible by adding .eTeRnItY file extension. However, it’s a poorly written ransomware virus.
Created by a hacker from Sri Lanka Sameera-Madushan-Perera, Eternity virus seems to be related to Stupid/FTSCoder malware. However, the virus crashes on the system due to the missing audio file that is supposed to play as soon as ransom-demanding lock screen message is displayed.
Ransomware payload might be dropped on the system if a user opens a malicious email attachment, downloads obfuscated software or update, etc. The malicious program is designed to encrypt the most popular file types, such as:
- Microsoft Office or OpenOffice documents;
- Images;
- Audio files;
- Video files;
- Databases;
- Archives;
- etc.
Following data encryption, Eternity malware shows a ransom note in the lock screen message. The window provides a Bitcoin wallet address where victims are supposed to transfer $1000 in Bitcoins. Additionally, people can contact crooks via a provided form.
However, there’s no need to pay the ransom. Security researchers already know all the information you need. Crooks use unoriginal, and easy-to-guess unlock code – 1234567890. Thus, you can enter it into the lock screen and get your files decrypted for free.
Bear in mind that data recovery does not remove Eternity virus from the computer. Nevertheless, you restore your files; the malicious program will remain on the system. Thus, you have to uninstall it in order to avoid another data encryption and use your computer safely.
Even though it’s a weak ransomware virus, it is still capable of making modifications to the system and makes it vulnerable. Thus, you should opt for automatic Eternity removal to get rid of the malicious program. We recommend choosing FortectIntego for this task.

Things to know about ransomware distribution
File-encrypting viruses use similar distribution methods. Therefore, you can encounter Eternity ransomware after:
- opening obfuscated Word, PDF or ZIP file attached to an email;[2]
- downloading bogus software;
- installing fake updates.
Therefore, users are advised to be careful when clicking and downloading content from the Internet. Malware payload Eternity Ransomware.exe might be obfuscated and look like safe to open file or useful program. Thus, you have check each file before you download it to your PC.
However, security experts from NoVirus.uk[3] warn that malware might also infiltrate devices by exploiting security vulnerabilities. Thus, users should not avoid installation of available updates.
Installing an antivirus program and making backups are also important in ransomware prevention. Thus, you should create copies of the most important files and save them in an external storage device, such as USB or hard drive.
Removal of the Eternity ransomware virus
As you already know, there’s no need to worry about data recovery because you can get access to your files by entering 1234567890 passcode. Once your files are restored, you should go for Eternity removal which is done with security software. If you are not sure what tool to choose, try FortectIntego or MalwarebytesMalwarebytes.
In order to avoid any obstacles and remove Eternity ransomware virus smoothly, you should also reboot your PC to Safe Mode with Networking. The instructions below will explain to you how to do it properly.
Was this guide helpful?
Be the first to comment