Decryption of Ransonware Files

redbandit

redbandit

Supreme Member
Joined
Sep 30, 2014
Messages
1,431
Reaction score
420
hi everyone,

any recommendations for decrypting files hit by ransomware? Not sure of the type of malware but it is definitely a variant of CryptoLocker. The malware has been wiped off the system but the files are still encrypted. Files types are Word, Excel, PPT, PDF and Jpeg.


thank you
 
Advertise on BHW
bleeping computer has been tracking and reporting on the technological advancement of the ransomware malware, and the last article I read said that they had learned that the encryption algo used was easy to crack. But my prediction is that's going to change, and there is soon going to come a day when, once you've been hit it's going to be pay the ransom, or lose the data. I'm currently researching online backup services in order to get ahead of this very serious threat.
 
Hi Billy,

I looked up Bleeping computer, but have had no luck with the files. any alternative you have that can be used to view/restore the data?
 
did you try the restore to previous version method?

http://esupport.trendmicro.com/en-us/home/pages/technical-support/premium-security/1099221.aspx
 
redbandit said:
thank you for the share. the virus has been cleaned off the system but the files still remain encrypted. An a mode of panic the system administrator wiped the system clean and isolated the files, so restore is not possible.
Click to expand...

If you have the hard disk, and you have not written to it since file encryption, data recovery software will get the files back. In some cases, even if you have written to the disk you can recover the files.
 
JustUs said:
If you have the hard disk, and you have not written to it since file encryption, data recovery software will get the files back. In some cases, even if you have written to the disk you can recover the files.
Click to expand...

I read a similar post somewhere else. Why/how do you know that?

The other post said GetDataBack would restore the original data. I'm wondering if the encryption leaves behind an original copy that is only "deleted" and not "wiped". I'll try to post a like to bleeping computer in a minute here...
 
I was wondering if there was a universal decrypter for ransomware. This would be a great challenge for any blackhat willing to do create such a program. I work as a Computer Technician and we are getting the odd ransomware. I would love to have a universal ransomware decrypter for any kinds of ransomware. This universal ransomware decrypter could be updated with any new ransomware or the universal ransomware decrypter could change the encryption process and change for the universal ransomware decrypter to first encrypt the what was being encrypted and then decrypt it afterwards. I would like to challenge any blackhat to carry this out. If there is such a ransomware decryption tool please let me know.
 
Advertise on BHW
You must log in or register to reply here.
Sign up now!

Main Menu

Home Main Forum List Black Hat SEO White Hat SEO BHW Newbie Guide Blogging Black Hat Tools Social Networking Downloads

Marketplace

Content / Copywriting Hosting Images, Logos & Videos Proxies For Sale SEO - Link building SEO - Packages Social Media Social Media - Panels Web Design Misc

Making Money

Affiliate Programs Hire a Freelancer Making Money Pay Per Click Site Flipping

BlackHatWorld

BHW Merch Forum Suggestions & Feedback Introductions Lounge Dispute Resolution

Other

Domain Name Forum IM Journeys Web Hosting Newsletter
Back
Top