CryptoJoker勒索病毒家族详情
本帖最后由 Potato 于 2020-12-22 10:53 编辑【家族名】
Win32/Ransom.CryptoJoker
[平台] / [主类型].[家族名]
平台类型 :Win32 Win64
威胁类型 : Ransom
【是否支持解密】
360解密大师:已支持解密
在线解密:暂不支持
【被加密文件】
被加密文件后缀格式: 修改文件后缀为.partially.nocry
【勒索提示信息】:
文件名:CryptoJoker Recovery Information.txt
文件内容 :
-------------------------------------------------------------------------------
Hello, my name is CryptoJoker !!
My name is CryptoJoker. I have encrypted all your precious files including images, videos,
songs, text files, word files and e.t.cSo long story short, you are screwed ... but you are lucky
in a way. Why is that ?? I am ransomware that leave you an unlimited amount of time to gather the money
to pay me. I am not gonna go somewhere, neither do your encrypted files.
FAQ:
1. Can i get my precious files back ??
Answer: Ofcourse you can. There is just a minor detail. You have to pay to get them back.
2. Ok, how i am gonna get them back ?
Answer: You have to pay 100€ in bitcoin.
3. There isn't any other way to get back my files ?
Answer: Nahhh.
4. Ok, what i have to do then ?
Answer: Simply, you will have to pay 100€ to this bitcoin address: 1yh3eJjuXwqqXgpu8stnojm148b8d6NFQ . When time comes to send me the money, make sure to include your e-mail and your personal ID(you can see it bellow) in the extra information box (it may apper also as 'Extra Note' or 'optional message') in order to get your personal decryption key. It may take up to 6-8 hours to take your personal decryption key.
5. What the heck bitcoin is ?
Answer: Bitcoin is a cryptocurrency and a digital payment system. You can see more information here: https://en.wikipedia.org/wiki/Bitcoin . I recommend to use 'Coinbase' or 'Bitcoin Wallet' as a bitcoin wallet, if you are new to the bitcoin-wallet. Ofcourse you can pay me from whatever bitcoin wallet you want, it deosn't really matter.
6. Is there any chance to unclock my files for free ?
Answer: Not really. After 1-2 or max 3 years there is propably gonna be released a free decryptor. So if you want to wait ... it's fine. As i said, i am not gonna go somewhere.
7. What i have to do after getting my decryption key ?
Answer: Simple. Just press the decryption button bellow. Enter your decryption key you received, and wait until the decryption process is done.
Your personal ID: 004E761C0F8BFBFF000306A9
-------------------------------------------------------------------------------
【防护建议】
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
我今天也中了这个勒索病毒,请问这个是最新的勒索病毒吗?还没有方法解密吗? 家族:CryptoJoker
被加密文件后缀:partially4.nocry
黑客邮箱/Url:admin@newaptip.ga 我也中了 我的天呀 JPG相片全死。NTFS的盘都中了 exFAT的都没中 希望早点出来工具。。。 家族:CryptoJoker
被加密文件后缀:devos
黑客邮箱/Url:ggainccu@tutanota.com 本帖最后由 360fans_aPM8qE 于 2020-12-24 13:56 编辑
搞定,谢谢360 家族:CryptoJoker
被加密文件后缀:cryptojoker
黑客邮箱/Url:1yh3eJjuXwqqXgpu8stnojm148b8d6NFQ 家族:CryptoJoker
被加密文件后缀:makop
黑客邮箱/Url:svnoapccpobt@tutanota.com 家族:CryptoJoker
被加密文件后缀:Solaso
黑客邮箱/Url:maopsutrrp@tutanota.com 家族:CryptoJoker
被加密文件后缀:b00m
黑客邮箱/Url:rans0me@protonmail.com
页:
[1]