My company has had a serious issue - we were infected by Cryptolocker, or so we suspect. We attacked the virus pretty quickly once we noticed what was going on, but it executed late in the night and it had already affected a lot of critical files. Our IT dept failed to notice that our backups were faulty as well...now we're in trouble.
We didn't get a pop up for the Cryptolocker virus, so we have no way to pay the ransom and as we have no way to recover the files, we need to find a way to get a hold of them to pay it. As it may seem petty, as we have lost hundreds of thousands of dollars worth of company data, we can't simply let it go and have to find a way to correct this issue.
We do have a pre-encrypted file and a post encrypted file, thinking we could simply break the encryption but alas, after further investigation there's no way to break the encryption with that method that is known.
I hate to ask it, but does anyone happen to know how to get a hold of a command and control center for cryptolocker so we can upload a file and know for sure if it was them (it could have been a variant or even a destructive spin off but if we can pay it and get a key, we have to try)
Any help and advice would be appreciated - please don't badger me about not paying the ransom - it's about the only option we have left to recover the massive amount of intellectual data that's been lost.
Thanks and hope to hear back soon!
Mod Edit: moved to General Security from Server
Edited by boopme, 31 May 2014 - 08:52 PM.