Sign in to follow this  
JusT

Infection .[[email protected]].adobe

Recommended Posts

That's almost certainly a variant of Dharma. Unfortunately there's no known way to decrypt files that have been encrypted by modern variants of Dharma without first obtaining the private key from the criminals who made/distributed the ransomware.

Share this post


Link to post
Share on other sites

We never recommend paying the ransom, as it only encourages these criminals to continue distributing their ransomware. That being said, the decision is ultimately up to you. As far as I know, whoever is behind Dharma/Crysis will usually send a working decryption tool, however if the tool they send doesn't work then they may not assist you in figuring out why.

Of course, Dharma has been around for a little while now in various forms, and I'm sure that various law enforcement agencies are working with computer security companies to gain access to the command and control servers used by Dharma/Crysis. In theory, it is only a matter of time before they find a weakness and gain access to the database of private keys, however there is no way to know for certain when that would happen. If you can wait, then it's best to make a backup of your encrypted files so that they can be recovered when someone releases a decryption tool.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.