Recommended Posts

Help need Decryptor for the Buddy malware virus it renames all of the files to .bddy at the end...

WE HАVE TО INFОRM YОU THАT АLL YОUR FILES WERE ENCRYPTED!

PLEАSE BE SURE, YОUR FILES АRE NОT BRОKEN!
Yоur filеs wеrе еnсrуptеd with strоng сrуptо аlgоrithms.
* Plеаsе nоtе thаt thеrе is nо wау tо dесrуpt уоur filеs withоut uniquе dесrуptiоn kеу аnd spесiаl sоftwаrе. Yоur uniquе dесrуptiоn kеу is sесurеlу stоrеd оn оur sеrvеr.
* Tо dесrуpt уоur dаtа уоu nееd оur spесifiс аutоmаtiс dесrуptiоn tооl аnd уоur uniquе dесrуptiоn kеу.
* Аll уоur filеs wеrе rеnаmеd but аftеr dесrуptiоn prосеss filеnаmеs will bе rесоvеrеd tо оriginаl stаtе. Dаtа struсturе will nоt сhаngе.
* Plеаsе bе surе thаt аll thе аttеmpts tо rесоvеr уоur filеs bу уоursеlf оr using third pаrtу tооls саn rеsult in irrеvосаblе lоss оf уоur dаtа!

WHАT DО YОU NEED TО DО?
First оf аll уоu hаvе tо writе us bу е-mаil:
Оur first е-mаil:                [email protected]
Оur sесоnd е-mаil:        [email protected]
Оur third е-mаil:        [email protected]

АTTENTIОN!
If уоu wаnt tо rесоvеr уоur dаtа plеаsе writе us tо аll оur е-mаil аdrеssеs!
It is rеаllу impоrtаnt bесаusе оf dеlivеrу prоblеms with sоmе mаil sеrviсеs!
Plеаsе bе surе wе аrе аlwауs in tоuсh аnd rеаdу tо hеlp уоu!
If уоu will nоt rесеivе оur аnswеr in 24 hоurs, plеаsе rеsеnd уоur mеssаgе!
Plеаsе аlwауs сhесk SPАM fоldеr!
* Writе оn English оr usе prоfеssiоnаl trаnslаtоr

In subjесt linе writе уоur pеrsоnаl ID: 42FC44329F2D68D2

Fоr уоur аssurаnсе уоu саn аttасh up tо 3 smаll еnсrуptеd filеs tо уоur mеssаgе. Wе will dесrуpt аnd sеnd уоu dесrуptеd filеs fоr frее. 
*   Plеаsе nоtе thаt filеs must nоt соntаin аnу vаluаblе infоrmаtiоn аnd thеir tоtаl sizе must bе lеss thаn 5Mb. 

Plеаsе dоn't wоrrу!
Bе surе thаt уоur dаtа саn bе RESTОRED TОDАY!
Wе аrе in tоuсh 24/7 аnd rеаdу tо hеlp уоu!
If уоu nоt rесеivеd оur аnswеr plеаsе rеsеnd уоur mеssаgе tо аll е-mаil аdrеssеs!

T80LdTgz
 

 

Share this post


Link to post
Share on other sites

Hi @amigo-A and other. Is there an effective decrypt tool? This ramsonware encrypted even my backups that were in another server. 

Also, is there anyway to prevent his to happen again? I have up-to-date AV software in all workstations and servers.

Share this post


Link to post
Share on other sites

Hello @chesterman

The Matrix Ransomware is already three years old, during this time no one was able to decrypt the files.

Matrix Ransomware is installed on computers running Windows with the help of exploit kits on sites that display malicious and regular ads that target vulnerabilities in Internet Explorer (CVE-2016-0189) and Flash (CVE-2015-8651). Both of these vulnerabilities target visitors to these sites using the already unsupported and outdated versions of Internet Explorer and Flash Player. To get infected, it is enough for the user to simply open such a site in his browser and the exploit will work in any case, having delivered the crypto-ransomware to the vulnerable computer.

Share this post


Link to post
Share on other sites
5 hours ago, chesterman said:

I have up-to-date AV software in all workstations and servers.

Such a protective soft must have the newer version and use multilateral protection at all levels.

Share this post


Link to post
Share on other sites

Yes. This is also Matrix Ransomware

So far, no one has been able to decrypt it without paying a ransom.

This is one of the successful and long-term extortion projects. They attack users around the world. A lot of financial resources and trained personnel should be allocated for such actions. Therefore, there is no chance of success in the future, without leaking keys and seizing ransomware servers. 

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.