Free REvil ransomware master decrypter released for past victims

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.bleepingcomputer.com/news/security/free-revil-ransomware-master-decrypter-released-for-past-victims/
A free master decryptor for the REvil ransomware operation has been released, allowing all victims encrypted before the gang disappeared to recover their files for free.
The REvil master decryptor was created by cybersecurity firm Bitdefender in collaboration with a trusted law enforcement partner.


While Bitdefender could not share details about how they obtained the master decryption key or the law enforcement agency involved, they told BleepingComputer that it works for all REvil victims encrypted before July 13th.

"As per our blog post, we received the keys from a trusted law enforcement partner, and unfortunately, this is the only information we are at liberty to disclose right now," Bitdefender's Bogdan Botezatu, Director of Threat Research and Reporting, told BleepingComputer.


"Once the investigation progresses and will come to an end, further details will be offered upon approval."
REvil ransomware victims can download the master decryptor from Bitdefender (instructions) and decrypt entire computers at once or specify specific folders to decrypt.
Click to expand...
 
  • Like
  • Applause
Reactions: [correlate], Andy Ful, Gandalf_The_Grey and 5 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,566
plat1098 said:


Bitdefender is reportedly working on a fix.
Click to expand...

Bitdefender here, talking to Fabian atm in DMs. Thanks, again for the heads-up! Users, please make sure you tick the "Backup files" option (currently unchecked by default). We're looking into this right now.
Click to expand...

1/2 UPDATE: We temporary disabled decryption for the corner-case raised by Fabian and a fix will be made available soon. All other REvil decryption types are fully functional and no files will be damaged but we strongly advise to check the "backup files" option nonetheless.
Click to expand...

2/2 If you need help with decryption or get stuck, shoot us an email at forensics@bitdefender.com and we will try to help.
Click to expand...
 
  • Like
Reactions: [correlate] and harlan4096
You must log in or register to reply here.

Similar threads

nicolaasjan
    • Like
    • Applause
    • +Reputation
Malware News New decryptor for Babuk Tortilla ransomware variant released
Replies
0
Views
926
Security News
nicolaasjan
nicolaasjan
MuzzMelbourne
    • Like
    • Applause
    • +Reputation
Conti-based ransomware ‘MeowCorp’ gets free decryptor
Replies
0
Views
729
News Archive
MuzzMelbourne
MuzzMelbourne
Gandalf_The_Grey
    • Like
    • Applause
    • Thanks
Bitdefender releases free decryptor for LockerGoga ransomware
Replies
1
Views
607
Bitdefender
Mystic
Mystic

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top