Mussharraf Hossen Shoikot 0 Posted August 8, 2020 Report Share Posted August 8, 2020 (edited) <removed URL's> several sites lead to it from what is seen in google search results. make decryptor Edited August 11, 2020 by GT500 Quote Link to post Share on other sites
GT500 854 Posted August 11, 2020 Report Share Posted August 11, 2020 I recommend uploading a copy of the ransom note along with an encrypted file to ID Ransomware so that you can verify which ransomware you are dealing with:https://id-ransomware.malwarehunterteam.com/ You can paste a link to the results into a reply if you would like for me to review them. Quote Link to post Share on other sites
Mussharraf Hossen Shoikot 0 Posted August 23, 2020 Author Report Share Posted August 23, 2020 (edited) @GT500 emsisoft decryptor fails to decrypt. new decryptor needed for anything encrypted with the ransomware i gave in link. Error: No key for New Variant online ID: aze3gYBYnp1s1LMW8eFJLIkqAEWrawHShXVztRSq Notice: this ID appears to be an online ID, decryption is impossible Finished! Edited August 23, 2020 by Mussharraf Hossen Shoikot Quote Link to post Share on other sites
GT500 854 Posted August 24, 2020 Report Share Posted August 24, 2020 18 hours ago, Mussharraf Hossen Shoikot said: No key for New Variant online ID: aze3gYBYnp1s1LMW8eFJLIkqAEWrawHShXVztRSq Notice: this ID appears to be an online ID, decryption is impossible This is a newer variant of STOP/Djvu, and your ID is an online ID, so there is currently no way to decrypt your files. There is more information at the following link:https://support.emsisoft.com/topic/32045-about-the-stopdjvu-decrypter/ Quote Link to post Share on other sites
Mussharraf Hossen Shoikot 0 Posted August 25, 2020 Author Report Share Posted August 25, 2020 @GT500 did you not read my first post? "make decryptor" is written there. it means I know there is no decryptor yet but needs to be made. I gave the url to ransomware in first post. use it Quote Link to post Share on other sites
GT500 854 Posted August 26, 2020 Report Share Posted August 26, 2020 13 hours ago, Mussharraf Hossen Shoikot said: @GT500 did you not read my first post? "make decryptor" is written there. it means I know there is no decryptor yet but needs to be made. I gave the url to ransomware in first post. use it Please don't post links to live malware in the public forums. You can upload it to VirusTotal and post a link to the analysis, but we don't want links to malicious files that anyone can follow and download from. Also, we know this ransomware well, and we already have a decrypter for it. I've already explained that it is impossible to decrypt your files as they have an online ID, and they can only be decrypted using the private key for your ID, which is only in the possession of the criminals who made/distributed the ransomware. Quote Link to post Share on other sites
Mussharraf Hossen Shoikot 0 Posted August 27, 2020 Author Report Share Posted August 27, 2020 On 8/26/2020 at 11:29 AM, GT500 said: Please don't post links to live malware in the public forums. You can upload it to VirusTotal and post a link to the analysis, but we don't want links to malicious files that anyone can follow and download from. Also, we know this ransomware well, and we already have a decrypter for it. I've already explained that it is impossible to decrypt your files as they have an online ID, and they can only be decrypted using the private key for your ID, which is only in the possession of the criminals who made/distributed the ransomware. anyway to forward this by your organization (emsisoft) to organizations that can catch them and extract the private keys? Quote Link to post Share on other sites
GT500 854 Posted August 28, 2020 Report Share Posted August 28, 2020 14 hours ago, Mussharraf Hossen Shoikot said: anyway to forward this by your organization (emsisoft) to organizations that can catch them and extract the private keys? Only the criminals have the private keys. The only time a private key will ever be on your computer is if you pay the ransom and the criminals send you a decrypter. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.