Ducky 0 Report post Posted December 3 all my file is lock with (.zobm) Result: We have identified "STOP (Djvu)". This ransomware is decryptable! This ransomware is still under analysis. This ransomware may be decryptable under certain circumstances. This ransomware is not decryptable! Please refer to the appropriate topic for more information. Samples of encrypted files and suspicious files may be needed for continued investigation. Please refer to the appropriate guide for more information. Identified by: ransomnote_email: [email protected] sample_extension: .zobm sample_bytes: [0x2C528 - 0x2C542] 0x7B33364136393842392D443637432D344530372D424538322D3045433542313442344446357D Click here for more information about STOP (Djvu). Case number: 8f4ce705254736b58b711004eb527571b53369141575393991 Quote Share this post Link to post Share on other sites
GT500 594 Report post Posted December 4 This is a newer variant of STOP/Djvu. If you have an offline ID, then once we can find the decryption key for this variant and add it to our database you will be able to recover your files. However, if you have an online ID (which is more likely) then it will not be possible to recover your files. There is more information at the following link:https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Quote Share this post Link to post Share on other sites