Free Decrypter Available for GandCrab Ransomware Victims

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
GandCrab-decrypter.png


Bitdefender has released a free decrypter that helps victims of GandCrab ransomware infections recover files without paying the ransom.

The decrypter is available for download via the NoMoreRansom project, of which Bitdefender is a member of.

Romanian Police and Romania's DIICOT (Directorate for Investigating Organized Crime and Terrorism) announced the decrypter's launch in statements published on their sites, minutes ago. Europol is also expected to make a formal announcement later today.

Arrests were also made, a source in Romanian law enforcement has told Bleeping Computer, although they did not detail how many suspects were apprehended, their nationality, or the place of their arrest.

Bogdan Botezatu, Senior E-Threat Analyst, denied rumors that Bitdefender had taken control over one of the GandCrab command and control servers, and said that the company only created a simple decryptor.

Bitdefender claims the decrypter works with all known GandCrab versions, but several users and security researchers [1, 2] reported problems with the decryption routine. But, bare in mind, this is the decrypter's first version, and the decrypter may have bugs like any recently launched software. In these cases, Bitdefender recommends that users consult the official GandCrab decrypter documentation, and if they keep having issues, optionally send an email to the address included in the PDF file.

GandCrab is one of 2018's top ransomware strains
The GandCrab ransomware first appeared at the end of January, this year, and was first detailed in a Bleeping Computer article, here. It was advertised as a Ransomware-as-a-Service offering on a cybercrime forum for Russian-speaking users.

The ransomware became very popular right away, being distributed via both exploit kits and email spam.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top