Not to be confused with HiddenTear.
InfiniteTear is a ransomware that encrypts files. It is a modified version of HiddenTear.


Once infiltrated, InfiniteTear encrypts stored files and appends their names with the ".JezRoz" extension (for example, "sample.jpg" is renamed to "sample.jpg.JezRoz"). Following successful encryption, InfiniteTear creates a text file ("Important_Read_Me.txt"), placing it in every existing folder. Updated variants of this ransomware use ".Infinite" extension for encrypted files.

The created text file contains a message stating that files are encrypted, and to restore them, victims must pay a ransom. In either case, decryption requires a unique key that InfiniteTear's developers store on a remote server. Victims are encouraged to pay the equivalent of $310 in Bitcoins to receive the key. They are also permitted to send two selected files to the cyber criminals via an email address provided. These files are then decrypted and returned, supposedly to guarantee that decryption is possible.

Message presented within InfiniteTear ransomware text file ("Important_Read_Me.txt"):

Your System Specific Identification Key :


What happened to my computer?

All of your personal files, such as documents, photos, videos, databases and files
that you need, have been removed from your secure cryptography.
You need to pay for your personal files to be decrypted.
Maybe you're looking for a way out of the internet to reopen your files. We will
endow you no one but us able to reopen your encrypted files!

So what should I do now?

All you need to do is pay the amount requested to our Bitcoin account and then 
send the personal identification key to our email address.

Why should I trust you?

We are not dishonest users and guarantee the return of all your missing files. To 
do this, you can decode 2 of your files by sending us free of charge.

After this message, you have only 7 days to pay the requested amount 
of time. After that time, your key will be deleted from our server and you will not be 
able to access any of your files even if the requested amount is paid and
remember any attempts to manipulate your encrypted files by the program.
Miscellaneous or other people may cause the file to be lost.

Pament : 310$
Email :
BitCoin Address : 18vsVuzW7oQLQX2u6UmGw9SzhmGntbEQoJ
Community content is available under CC-BY-SA unless otherwise noted.