This article contains effective removal instructions on how to delete MOLE Ransomware from the infected Windows OS and recover .mole extension.

MOLE Ransomware

MOLE Ransomware : What is it?

MOLE Ransomware has been discovered by security researcher Brad Duncan. It is a another variant of the CryptoMix family. It can get inside the PC without your awareness and encrypts files with the help of RSA-1024 encryption algorithm and renames them by using the "[32_random_characters].MOLE" pattern. For example, "1.jpg" is renamed to "0E95FDBA0D15AAC484CF87B30D2F7630.MOLE". After the successful encryption process, MOLE Ransomware creates a text file "INSTRUCTION_FOR_HELPING_FILE_RECOVERY.TXT", which is placing in each existing folder.

Screenshot of ransom note

MOLE Ransomware

This text file contains a message informing victims of the encryption, stating that files are encrypted with the help of RSA-1024 cryptography, and they can only be restored by employing a unique private key. Restoring files without a private key is impossible. Developers of this nasty malware store this key on a remote server and encourage victims to pay a ransom to receive it by contacting an email address oceanm@engineer.com" or "oceanm@india.com". The cost is currently unconfirmed but it also states that the ransom must be paid within 72 hours, otherwise the cost will double. However you should never attempt to contact these hackers or pay any ransom because it ignore victims, once payments are submitted. If victims paid the ransom amount, it is highly probable that they will get scammed. MOLE Ransomware also deletes all saved shadow volume copies which are a form of backup and eliminates the possibility of file recovery via Shadow Explorer.

Threat Summary

Threat Name

MOLE Ransomware

Type

Ransomware

Risk Level

Very High

Encryption Algorithm

RSA 1024 algorithm

Extension

.MOLE

Distribution Method

Junk email attachments

Symptoms

Encrypts all files and add .MOLE extension for each encrypted files

Affected OS

Windows XP, Vista, 10, 8/8.1, 7

How MOLE Ransomware Proliferates The PC?

MOLE Ransomware is mainly distributed through fake spam emails attachments which is fake USPS delivery notices. For example, "We have delivery problems with your parcel", "Please recheck your delivery address", "Our USPS courier can not contact you parcel", etc. The fake email message contains a link to a leading to a fake "Word Online" website containing an error message stating that a document cannot be opened and, therefore, victims must download a plug-in like MOLE Ransomware.

Scan PC to Remove MOLE Ransomware

How to Uninstall MOLE Ransomware from Control Panel from Windows 10

  • Click and Open Start Menu option

1

  • Settings option is to be selected on the menu to show all the contents

Windows10_Start

  • Click on System option

3

  • On the system Menu, Click on Apps and features option

4

  • Now Click on MOLE Ransomware to remove it from PC.

How to Eliminate MOLE Ransomware from Windows 8/8.1

Step 1: Press repeatedly F8 to boot PC in Safe Mode. Restart PC and select “Safe Mode with Networking”.

7

Step 2: Press ALT+Ctrl+Del to open Windows Task Manager. After that, search all the MOLE Ransomware related processes and then click to “End Task”

12

Step 3: Type “regedit” in Run dialog box and open Windows Registry Editor. Search and delete all the corrupt registries added by MOLE Ransomware infection.

14

Step 4: Go to Start and then click to open Control Panel.

6

After that, click Add/Remove Program

9

Uninstall MOLE Ransomware associated programs from Windows 8/8.1

8

Uninstall MOLE Ransomware From Window 7/vista

Tap on F8 Key to Enter Safe Mode

10

Restart PC and select “Safe Mode with Networking”

11

First of all close all running programs and open Task manager by pressing ALT + CTRL + DEL keys on your keyboard simultaneously.

12

Now Click on Processes menu and select all the processes associated with MOLE Ransomware one by one then click on End Task.

13

Now go to the desktop, click on Start Menu on the left lower corner. Move to Control panel and use left mouse click over it.

15

The Control panel window will open, if are getting the view by Category find and click “Uninstall a program” below “Programs” group.

16

Now select MOLE Ransomware within programs list and click on Uninstall.

Steps to Eliminate MOLE Ransomware from Windows XP

Step 1: Restart PC in Safe Mode by continuously pressing F8 button. After that, select “Safe Mode with Networking”.

11

Step 2: Open Windows Task Manager by pressing Alt+Ctrl+Del together. After that, find and select all the MOLE Ransomware associated processes and then click to “End Task” button.

12

Step 3: Open Run dialog box and then enter “regedit.exe” to open Windows Registry. Search and then delete all the corrupt and infectious registries added by MOLE Ransomware.

14

Step 4: Click Start button and then go to Control Panel, click to open Windows Add/Remove Program. Search all the MOLE Ransomware related programs and then uninstall it from Windows XP.

step16

down-button

How to Uninstall MOLE Ransomware From Your Infected Browser

A. Guidelines to Remove MOLE Ransomware From Microsoft Edge Browser

How to Reset Default Search Engine to Uninstall MOLE Ransomware

Select Settings after selecting More (…) on the address bar

Edge-Browser-Settings

Click and select on View advanced settings option

advance settings-edge

In order to input the search engine, Click on <Add new> under option”Search in the address bar with”

set-google-search-default-edge

Select Search engine and adds as default by clicking on Add as default option.

How to Reset Default Homepage on Microsoft Edge to Uninstall MOLE Ransomware

  • Select More (…) option on the address bar followed by settings
  • Select specific page or pages under Open with option
  • After selecting the Custom option, enter the URL of the homepage you wish to set as

win10-edge-se

B. How to Delete MOLE Ransomware from Google Chrome

Click to Open Google Chrome and then click on menu icon which is on the top right corner and then select Tools → Extensions

chrome-settings

Select all the malicious extensions including MOLE Ransomware and then select trash icon

2

Again click on menu icon and select Settings and then click to Manage Search Engines under the Search section

chrome-reset-settings

In Search Engines, remove all the infectious search sites and set Google Chrome as Default Browser

Chrome-show-advanced-settings

C. How to Uninstall MOLE Ransomware From Mozilla Firefox

Launch Mozilla Firefox and find and click “Firefox” button on the top left corner on the screen.

1

A drop down box will appear, navigate to Add-ons option and click on it.

2

In the next window select and click on “Extensions” in left pane.

menu-options-general

Find MOLE Ransomware add-on and click on the center area to see the border exactly and click on Disable button.
Wait a moment and let the add-on get disabled.

Firefox-troubleshooting-info

Now click the “Remove” button, later on uninstall the add-on Mozilla will ask you to restart the browser.

Reset-Firefox

D. How to Remove MOLE Ransomware From Internet Explorer

First of all Launch Internet explorer by clicking the Task-bar Icon on desktop.

Now Click on Tool Menu on web browser interface.

ie-wrench-icon

Select and click on Manage add-ons in the drop down box.

A View and manage your Internet Explorer Add-ons window will open, now click on “Toolbar and Extensions” option in left pane.

IE-disable-add-on
A list of all installed ad-ons will appear, select MOLE Ransomware and click on “Disable” button and Reset IE

Reset-IE

Click to Download MOLE Ransomware Scanner