![]() ![]() Brute force attack to decrypt filesĬreated by one of the most reputable security companies, the Avast Decryption Tool for Prometheus allows you to unlock files without having to pay a dime to cybercriminals. A ransom note is displayed in Notepad, which opens a file called “UNLOCK_FILES_INFO.txt” containing information about how to pay the ransom and instructions on how to get the files decrypted. Encrypted files are given a new extension, the most common one being “.unlock” or “.secure”. This ransomware strain uses the Chacha20 or AES-256 algorithms to lock files, while also encrypting the key with RSA-2048. Various processes are killed and tools that are designed for debugging, or PE files analysis are blocked, so that the threat is not easily discovered. The Prometheus ransomware is written in C# and inherits a lot of code from another malware strain called Thanos. ![]() Also, the desktop background is changed to one of the pictures below.The Avast Decryption Tool for Prometheus allows you to unlock files that have been a victim of a Prometheus ransomware attack without having to pay the ransom or risk data loss. ![]() The message is located in "Decryption instructions.txt," "Decryptions instructions.txt," "README.txt," "Readme to restore your files.txt," or "HOW TO DECRYPT YOUR DATA.txt" on the user's desktop. It uses AES-256 combined with RSA-1024 asymmetric encryption.Įncrypted files have many various extensions, encrypting your files, numerous possible messages appear, as seen in our screenshots. All the Avast Decryption Tools are available in one zip here. ![]() Avast Decryption Tool for CrySiS can unlock CrySiS (John圜ryptor, Virus-Encode, Aura, Dharma), a ransomware strain. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |