360fans_wap3384721441 发表于 2022-8-11 10:23

早上上班,中了勒索病毒,求助

<div><span style="font-size: 13.44px;">---=== Welcome. Again. ===---</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">&gt;&gt; Whats Happen? </span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">Your files are encrypted, and currently unavailable. You can check it: all files on your system has extension baxgj.</span></div><div><span style="font-size: 13.44px;">By the way, everything is possible to recover (restore), but you need to follow our instructions. Otherwise, you cant return your data (NEVER).</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">&gt;&gt; What guarantees? </span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">Its just a business. We absolutely do not care about you and your deals, except getting benefits. If we do not do our work and liabilities - nobody will not cooperate with us. Its not in our interests.</span></div><div><span style="font-size: 13.44px;">To check the ability of returning files, You should go to our website. There you can decrypt one file for free. That is our guarantee.</span></div><div><span style="font-size: 13.44px;">If you will not cooperate with our service - for us, its does not matter. But you will lose your time and data, cause just we have the private key. In practice - time is much more valuable than money.</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">&gt;&gt; Sensitive Data </span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">Sensitive data on your network was DOWNLOADED.</span></div><div><span style="font-size: 13.44px;">If you DON'T WANT your sensitive data to be PUBLISHED in our blog - you have to act quickly.</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">!!! You should check our blog, using Tor Browser, your data could already be published !!!</span></div><div><span style="font-size: 13.44px;">                  http://blogxxu75w63ujqarv476otld7cyjkq4yoswzt4ijadkjwvg3vrvd5yd.onion</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">Data includes:</span></div><div><span style="font-size: 13.44px;">- Employees personal data, CVs, DL, SSN.</span></div><div><span style="font-size: 13.44px;">- Complete network map including credentials for local and remote services.</span></div><div><span style="font-size: 13.44px;">- Private financial information including: clients data, bills, budgets, annual reports, bank statements.</span></div><div><span style="font-size: 13.44px;">- Manufacturing documents including: datagrams, schemas, drawings in solidworks format</span></div><div><span style="font-size: 13.44px;">- And more...</span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">&gt;&gt; How to get access to the website? </span></div><div><span style="font-size: 13.44px;"><br></span></div><div><span style="font-size: 13.44px;">Using a TOR browser!</span></div><div><span style="font-size: 13.44px;">1) Download and install TOR browser from this site: https://torproject.org/</span></div><div><span style="font-size: 13.44px;">2) Open our website: http://landxxeaf2hoyl2jvcwuazypt6imcsbmhb7kx3x33yhparvtmkatpaad.onion</span></div><div><span style="font-size: 13.44px;">3) When you open our website, put the following data in the input form:</span></div><div>。。。</div>

360fans_mtROIu 发表于 2022-8-11 15:23

Potato 发表于 2022-8-18 11:26

1.您中的属于Sodinokibi勒索病毒家族,暂时无法解密
2.如果文件不急需,可以备份等出解密工具。
3.如果文件急需,可以自行联系黑客(不推荐,同时存在风险)
4.若需要排查中毒原因请添加2880706405,并备注被加密文件后缀。
5.更多防护方案和付款细节请参考:https://bbs.360.cn/thread-15858154-1-1.html
6.如果您想随时关注解密情况可以直接到lesuobingdu.360.cn查询,或者填写登记表,后续如果出解密我们会通过登记进行通知:https://wenjuan.lap.360.cn/sv/59abea7ae8912
7.解密时间无法估计。若勒索病毒已知,而我们当前又无法给出技术破解方案,说明该勒索病毒的加密算法是不存在技术漏洞的。那只能等待黑客的私钥被公开或泄露,或是有其他的技术性突破。而这些都是无法做出时间上的预期的。
页: [1]
查看完整版本: 早上上班,中了勒索病毒,求助