勒索病毒stop家族.copa,无法解密。
本帖最后由 360fans_Im8Wa3 于 2020-9-29 11:19 编辑勒索病毒stop家族.copa,无法解密。
被加密zip和加密后的copa文件,源文件是chrome的插件,可以安全查看。
应该是被离线秘钥加密的,SystemID下PersonalID.txt只有一行“PWRNwEuUktqcrDXCSKrqOHcFP3PfNrEGRP9vlhDg”。
用360解密不了,用Emsisoft STOP Djvu也解密不了。请求技术支援。有必要可以提供病毒exe样本供分析。
勒索信息_Readme.txt内容如下:
ATTENTION!
Don't worry, you can return all your files!
All your files like pictures, databases, documents and other important are encrypted with strongest encryption and unique key.
The only method of recovering files is to purchase decrypt tool and unique key for you.
This software will decrypt all your encrypted files.
What guarantees you have?
You can send one of your encrypted file from your PC and we decrypt it for free.
But we can decrypt only 1 file for free. File must not contain valuable information.
You can get and look video overview decrypt tool:
hxxps://we.tl/t-NYlGSMNN9r
Price of private key and decrypt software is $980.
Discount 50% available if you contact us first 72 hours, that's price for you is $490.
Please note that you'll never restore your data without payment.
Check your e-mail Spam or Junk folder if you don't get answer more than 6 hours.
To get this software you need write on our e-mail:
helpmanager@mail.ch
Reserve e-mail address to contact us:
restoremanager@airmail.cc
Your personal ID:
0253IjrfgPWRNwEuUktqcrDXCSKrqOHcFP3PfNrEGRP9vlhDg
1.您中的属于StopV2勒索病毒家族,暂时无解。
2.如果文件不急需,可以备份等我们出解密工具。
3.如果文件急需,可以自行联系黑客
4.若需要排查中毒原因请添加1932948309,并备注被加密文件后缀。
5.更多防护方案和付款细节请参考:https://bbs.360.cn/thread-15858154-1-1.html
页:
[1]