Incepted in 1978, Ratanmoti Texfab India Pvt. Ltd. (a part of PRABHAT GROUP) has made a tremendous growth in the Textile Products Sector, and as of today, it is the major player in the Indian Industrial Setup.
Over the course of years, Ratanmoti Texfab India Pvt. Ltd. (Corporate) has created a trusted name in the Indian Textile Sector.
THE CLIENT WAS THE VICTIM OF ONION MALWARE
As Ratanmoti Texfab India Pvt. Ltd. (Corporate) is a global Manufacturer, Exporter, and Supplier of Textile Yarn and Fabrics. They used 12TB Western external hard drive (3.5 inches in size and the model no. is WD20PURX-64P6ZY0) to store critical details such as transaction history, customer data, spreadsheets, Microsoft Access Files, demographic related-reports, etc.
Regrettably, the hard disk was infected by Onion malware which encrypted the data stored on it. Upon encryption, all the files and folders turned inaccessible until a ransom was paid to decrypt the same.
Each time the client tried to open the files, they showed an error and there was a change in the name of the file format. For example, the actual file name was: Ratanmoti.mdb which changed to Ratanmoti.mdb.jhgb1232121@.onion.
The potentially destructive virus obstructed the client’s day-to-day business routine. Therefore, it became imperative to remove the Onion virus to resume the business.
THE CLIENT’S RIGHT COURSE OF ACTION
The client visited Stellar Data Recovery Service Centre – Gurugram with the affected hard drive and enquired about the data recovery services. Moreover, he presented his side of the story to the executive and requested for the quotation. The client specified that his concern was to get the access of Microsoft Access files, and that too, on an immediate basis. After getting through the client’s difficult situation, the executive requested him to submit the hard drive and assured him of complete data recovery without compromising on the privacy and integrity of the data.
STELLAR’S ANSWER TO THE VIRUS
The data recovery professional examined the hard drive and found out that the media had some logical problems. On analysing the encrypted files, the team observed that the “Onion” virus has led to the renaming of the files.
The data recovery team followed the below-stated procedure to recover the files:
THE CLIENT GOT HIS MICROSOFT ACCESS FILES WITHOUT PAYING THE RANSOM
The executive informed the client about the successful completion of the data recovery process and requested him to come to the center and collect his files. After going through each file, the client assented to the recovery and was pleased with the results. He breathed a sigh of relief and thanked the team for recovering his Microsoft Access files from the affected HDD.