Ekati ransomware encrypts user data using AES, and then displays a message that contains a link to start decryption. Ransomware execuatble name is Ekati and hence the name. Reverse malware analysis reveals that it is version is 188.8.131.52 and author name specified as Lee Wei. It does not append any extension to encrypted files. Below is the ransom note.