PUBG Ransomware forces users to play PUBG

The new malware discoverd by MalwareHunterTeam, bleepingcomputer.com reports, encrypts users folders and files on the desktop adding .PUBG extension to them. The most hilarious part is that they don't ask for money but only forces users to play PUBG for one hour straight, however it can be avoided by entering the following code - s2acxx56a2sae5fjh5k2gb5s2e  and clicking restore button.

If you want to be fancy, though, the ransomware also checks to see if your playing PlayerUnknown's Battlegrounds by monitoring the running processes for one named "TslGame" as shown below. Even though the ransom note states you need to run it for 1 hour, you only need to run the executable for 3 seconds.

Once a user plays the game and the process is detected, the ransomware will automatically decrypt the victim's files.  This ransomware is not too advanced as it only looks for the process name and does not check for other information to confirm that the game is actually being played. That means you can simply run any executable called TslGame.exe and it will decrypt the files.

Origin: www.bleepingcomputer.com