求大神支招NAS后缀名是HAPPYCHOOSE勒索病毒
本帖最后由 Potato 于 2020-9-27 10:33 编辑Decryption INFO:
YOUR ID
4A 90 FA 51 98 66 65 06 24 CB B1 55 16 BE 5E 47
80 7B 61 40 5E C0 14 0D 8B 70 63 80 E0 9B 42 7D
85 68 C6 AE F6 3A A4 91 35 E3 87 B4 B4 71 45 08
EA 93 D0 9A 5F D1 E3 00 59 CF 8B 59 96 C9 C5 53
AC 04 27 28 19 26 0C BF 01 16 34 32 92 E1 40 BA
CB F4 26 90 7C 49 D4 56 E5 6F 8C 20 B1 6C 6F A6
6C 09 C6 08 0F 72 09 34 B4 50 CA 9D 86 D0 EE 0C
96 DF B7 36 18 AD 4A 15 01 F3 80 4B BB B2 CD 44
13 25 81 D5 13 C1 C2 92 99 23 77 F8 30 58 BA 45
52 A8 1C EC AC 48 44 BB FF B3 BA C6 2C 9A 2F F5
0D 4E EB 99 33 CE FF B5 8E 11 E1 A9 AE AE F8 10
78 0F 36 9D 98 83 BA FC 66 52 D3 A0 D3 95 3D 5A
B0 FA 37 00 EA E7 6D 49 14 F8 39 32 24 5F AE 62
AB AA AD 0A EB 73 29 DB 8C ED A0 7A F2 DA 08 B8
FA D7 48 7C D0 AD 59 89 81 41 06 B9 7A B1 CC 65
59 35 DD B4 17 B2 86 0E A7 82 F3 2C 1C 41 32 B8
English
☠ All your files are encrypted! ☠
All your important data has been encrypted.
To recover data you need decryptor.
To get the decryptor you should:
Send 1 test image or text filehappychoose@cock.li or happychoose2@cock.li.
In the letter include YOUR ID (look at the beginning of this document).
We will give you the decrypted file and assign the price for decryption all files
After we send you instruction how to pay for decrypt and after payment you will receive a decryptor and instructions We can decrypt one file in quality the evidence that we have the decoder.
Attention!
•Only happychoose@cock.li or happychoose2@cock.li can decrypt your files
•Do not trust anyone happychoose@cock.li or happychoose2@cock.li
•Do not attempt to remove the program or run the anti-virus tools
•Attempts to self-decrypting files will result in the loss of your data
•Decoders other users are not compatible with your data, because each user's unique encryption key
1.你中的这个家族是属于GlobeImposter的,暂时无解。
2.该勒索病毒是只针对Windows进行攻击。你的NAS被加密了只能是和NAS在一个网段的还有别的机器被感染了。
页:
[1]