Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

TeslaCrypt (.aaa) infection - How do I speed up Yafu (with TeslaDecoder 1.0.1)?


  • This topic is locked This topic is locked
5 replies to this topic

#1 kashkns

kashkns

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:47 PM

Posted 23 May 2016 - 02:24 AM

Hi All

I have a huge number of files encrypted with teslacrypt variant that encrypts files with .aaa extension.

Though the files were important to me, I refused to pay ransom mainly because I knew it would be a matter of time before someone really smart would come up with a solution.

I was relieved to see TeslaDecoder.

I found this article, downloaded the TeslaDecoder tool from here and downloaded the customised Yafu suite from here 

 

I followed all the instructions, could not find the factorisation in factordb.com for the private key, finally tuned up yafu with tuneX64.bat, and ran the factorX64.bat command with 7 threads.

This batch file took an extremely long time (20 hours) and I had to terminate it as I needed to get back to work on this laptop.

But I copied the following for reference:

  1. intermediate status that appeared on the command window
  2. the complete factor.log
  3. my computer configuration used to run this
  4. the private key on which I am trying to run this prime factorisation

I intend to do this again but need your help in figuring out the best way to resume (if possible). It looks like it has found a few prime factors but processing a "C127"

I have the following questions before I proceed to run it again. Would greatly appreciate someone's expertise on this. Thank you.

  • Is there a way I can use this output and start Yafu in a specific way to resume from where I left?
  • Any idea on how long will this process usually take?
  • The factor.log indicates the tune up did not work based on the below log, is that true? Is there a proper way to tune Yafu besides running the above batch command?
    • factor.log extract: "no tune info: using qs/gnfs crossover of 95 digits". The entire log is given below
  • Is there a faster way for prime factorization than Yafu on my computer (configuration given below)? An online pool of VMs to process this number, maybe?
  • Do I need the same OS on which the files were encrypted or will this process work on any other OS (other laptop) as long as I feed it the encrypted .aaa files? 

 

SharedSecret1*PrivateKeyBC

hex 3A373F2A7B1003E9598367D74B0C4860C2CFEBB699899F6A38051A37DC5819A24347CE5BBF083E1ECFC143651B778B7B83B037ED1BD12F69FF0E3204848E014F
dec 3049009244516986749891306124143585825137265321629113330682805634662535650727494003213745880694161287390279766426884986584627658868131304073743144791703887
 

My computer:

Windows Server 2008 R2 SP1 64-bit OS

Processor: Intel Core i7-2630QM @2.00GHz

RAM: 6 GB
 

Yafu output before I terminated it:

 
...
...
total yield: 25716, q=4540007 (0.10987 sec/rel)
total yield: 26092, q=4548001 (0.11002 sec/rel)
total yield: 26255, q=4556021 (0.10969 sec/rel)
total yield: 26187, q=4564013 (0.11031 sec/rel)
total yield: 26818, q=4532009 (0.10958 sec/rel)
nfs: commencing algebraic side lattice sieving over range: 4620000 - 4628000
nfs: commencing algebraic side lattice sieving over range: 4612000 - 4620000
nfs: commencing algebraic side lattice sieving over range: 4588000 - 4596000
nfs: commencing algebraic side lattice sieving over range: 4572000 - 4580000
nfs: commencing algebraic side lattice sieving over range: 4596000 - 4604000
nfs: commencing algebraic side lattice sieving over range: 4604000 - 4612000
nfs: commencing algebraic side lattice sieving over range: 4580000 - 4588000
 Warning:  lowering FB_bound to 4619999.
 Warning:  lowering FB_bound to 4611999.
 Warning:  lowering FB_bound to 4587999.
 Warning:  lowering FB_bound to 4595999.
 Warning:  lowering FB_bound to 4571999.
 Warning:  lowering FB_bound to 4579999.
 Warning:  lowering FB_bound to 4603999.
total yield: 24060, q=4628003 (0.11213 sec/rel)
total yield: 25586, q=4588007 (0.11088 sec/rel)
total yield: 25602, q=4604063 (0.11100 sec/rel)
total yield: 25925, q=4596013 (0.11158 sec/rel)
total yield: 27087, q=4612001 (0.11006 sec/rel)
total yield: 26840, q=4580011 (0.11109 sec/rel)
total yield: 27515, q=4620001 (0.10924 sec/rel)
nfs: commencing algebraic side lattice sieving over range: 4676000 - 4684000
nfs: commencing algebraic side lattice sieving over range: 4636000 - 4644000
nfs: commencing algebraic side lattice sieving over range: 4644000 - 4652000
nfs: commencing algebraic side lattice sieving over range: 4668000 - 4676000
nfs: commencing algebraic side lattice sieving over range: 4660000 - 4668000
nfs: commencing algebraic side lattice sieving over range: 4652000 - 4660000
nfs: commencing algebraic side lattice sieving over range: 4628000 - 4636000
 Warning:  lowering FB_bound to 4675999.
 Warning:  lowering FB_bound to 4643999.
 Warning:  lowering FB_bound to 4635999.
 Warning:  lowering FB_bound to 4667999.
 Warning:  lowering FB_bound to 4651999.
 Warning:  lowering FB_bound to 4627999.
 Warning:  lowering FB_bound to 4659999.
total yield: 22840, q=4660001 (0.11223 sec/rel)
total yield: 25165, q=4644001 (0.10993 sec/rel)
total yield: 25519, q=4636003 (0.11107 sec/rel)
total yield: 26112, q=4668023 (0.10970 sec/rel)
total yield: 28098, q=4652027 (0.10878 sec/rel)
total yield: 27849, q=4676011 (0.11027 sec/rel)
total yield: 28450, q=4684003 (0.10849 sec/rel)
nfs: commencing algebraic side lattice sieving over range: 4684000 - 4692000
nfs: commencing algebraic side lattice sieving over range: 4732000 - 4740000
nfs: commencing algebraic side lattice sieving over range: 4700000 - 4708000
nfs: commencing algebraic side lattice sieving over range: 4692000 - 4700000
nfs: commencing algebraic side lattice sieving over range: 4724000 - 4732000
nfs: commencing algebraic side lattice sieving over range: 4716000 - 4724000
nfs: commencing algebraic side lattice sieving over range: 4708000 - 4716000
 Warning:  lowering FB_bound to 4683999.
 Warning:  lowering FB_bound to 4731999.
 Warning:  lowering FB_bound to 4699999.
 Warning:  lowering FB_bound to 4723999.
 Warning:  lowering FB_bound to 4715999.
 Warning:  lowering FB_bound to 4691999.
 Warning:  lowering FB_bound to 4707999.
total yield: 13483, q=4696049 (0.12676 sec/rel)
Received signal 2... please wait
If you quit again, YAFU will exit immediately but you will LOSE ALL UNSAVED PROG
RESS.
 
 
***factors found***
 
P1 = 3
P1 = 3
P2 = 37
P2 = 59
P5 = 23773
P5 = 52489
P5 = 94999
P9 = 165814283
 
***co-factor***
C127 = 7895310890610138117346138742587480058872721379409600821256965086094305607
017396011635206549095850771795994311056065762664097729
Terminate batch job (Y/N)?
 
Factor.log (Complete)
 
05/22/16 11:28:48 v1.34.5 @ MyComputer, starting SIQS on c60: 349594255864176572614071853194924838158088864370890996447417
05/22/16 11:28:48 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:28:49 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:28:49 v1.34.5 @ MyComputer, n = 61 digits, 201 bits
05/22/16 11:28:49 v1.34.5 @ MyComputer, factor base: 3488 primes (max prime = 70009)
05/22/16 11:28:49 v1.34.5 @ MyComputer, single large prime cutoff: 3850495 (55 * pmax)
05/22/16 11:28:49 v1.34.5 @ MyComputer, allocating 2 large prime slices of factor base
05/22/16 11:28:49 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:28:49 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:28:49 v1.34.5 @ MyComputer, sieve interval: 4 blocks of size 32768
05/22/16 11:28:49 v1.34.5 @ MyComputer, polynomial A has ~ 7 factors
05/22/16 11:28:49 v1.34.5 @ MyComputer, using multiplier of 7
05/22/16 11:28:49 v1.34.5 @ MyComputer, using SPV correction of 20 bits, starting at offset 36
05/22/16 11:28:49 v1.34.5 @ MyComputer, using SSE2 for trial division and x64 sieve scanning
05/22/16 11:28:49 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:28:49 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:28:49 v1.34.5 @ MyComputer, trial factoring cutoff at 68 bits
05/22/16 11:28:49 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:28:57 v1.34.5 @ MyComputer, trial division touched 113680 sieve locations out of 1593573376
05/22/16 11:28:57 v1.34.5 @ MyComputer, 1718 relations found: 1051 full + 667 from 9755 partial, using 6079 polys (96 A polys)
05/22/16 11:28:57 v1.34.5 @ MyComputer, on average, sieving found 1.78 rels/poly and 1259.32 rels/sec
05/22/16 11:28:57 v1.34.5 @ MyComputer, trial division touched 113680 sieve locations out of 1593573376
05/22/16 11:28:57 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:28:57 v1.34.5 @ MyComputer, starting SIQS on c65: 34053408309992030649212497354061832056920539397279047809781589871
05/22/16 11:28:57 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:28:57 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:28:57 v1.34.5 @ MyComputer, n = 67 digits, 220 bits
05/22/16 11:28:57 v1.34.5 @ MyComputer, factor base: 6368 primes (max prime = 135647)
05/22/16 11:28:57 v1.34.5 @ MyComputer, single large prime cutoff: 8138820 (60 * pmax)
05/22/16 11:28:57 v1.34.5 @ MyComputer, allocating 3 large prime slices of factor base
05/22/16 11:28:57 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:28:57 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:28:57 v1.34.5 @ MyComputer, sieve interval: 4 blocks of size 32768
05/22/16 11:28:57 v1.34.5 @ MyComputer, polynomial A has ~ 8 factors
05/22/16 11:28:57 v1.34.5 @ MyComputer, using multiplier of 47
05/22/16 11:28:57 v1.34.5 @ MyComputer, using SPV correction of 20 bits, starting at offset 40
05/22/16 11:28:57 v1.34.5 @ MyComputer, using SSE2 for trial division and x64 sieve scanning
05/22/16 11:28:57 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:28:57 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:28:57 v1.34.5 @ MyComputer, trial factoring cutoff at 76 bits
05/22/16 11:28:57 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:29:13 v1.34.5 @ MyComputer, trial division touched 111820 sieve locations out of 2081685504
05/22/16 11:29:13 v1.34.5 @ MyComputer, 1646 relations found: 1255 full + 391 from 10151 partial, using 7941 polys (122 A polys)
05/22/16 11:29:13 v1.34.5 @ MyComputer, on average, sieving found 1.44 rels/poly and 735.55 rels/sec
05/22/16 11:29:13 v1.34.5 @ MyComputer, trial division touched 111820 sieve locations out of 2081685504
05/22/16 11:29:13 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:29:13 v1.34.5 @ MyComputer, starting SIQS on c70: 6470287906463336878241474855987746904297564226439499503918586590778209
05/22/16 11:29:13 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:29:13 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:29:13 v1.34.5 @ MyComputer, n = 70 digits, 232 bits
05/22/16 11:29:13 v1.34.5 @ MyComputer, factor base: 12144 primes (max prime = 277217)
05/22/16 11:29:13 v1.34.5 @ MyComputer, single large prime cutoff: 18019105 (65 * pmax)
05/22/16 11:29:13 v1.34.5 @ MyComputer, allocating 5 large prime slices of factor base
05/22/16 11:29:13 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:29:13 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:29:13 v1.34.5 @ MyComputer, sieve interval: 6 blocks of size 32768
05/22/16 11:29:13 v1.34.5 @ MyComputer, polynomial A has ~ 9 factors
05/22/16 11:29:13 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:29:13 v1.34.5 @ MyComputer, using SPV correction of 20 bits, starting at offset 32
05/22/16 11:29:13 v1.34.5 @ MyComputer, using SSE2 for trial division and x64 sieve scanning
05/22/16 11:29:13 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:29:13 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:29:13 v1.34.5 @ MyComputer, trial factoring cutoff at 81 bits
05/22/16 11:29:13 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:29:28 v1.34.5 @ MyComputer, trial division touched 120678 sieve locations out of 1897660416
05/22/16 11:29:28 v1.34.5 @ MyComputer, 1258 relations found: 1050 full + 208 from 10153 partial, using 4826 polys (37 A polys)
05/22/16 11:29:28 v1.34.5 @ MyComputer, on average, sieving found 2.32 rels/poly and 724.72 rels/sec
05/22/16 11:29:28 v1.34.5 @ MyComputer, trial division touched 120678 sieve locations out of 1897660416
05/22/16 11:29:28 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:29:28 v1.34.5 @ MyComputer, starting SIQS on c75: 281396163585532137380297959872159569353696836686080935550459706878100362721
05/22/16 11:29:28 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:29:28 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:29:28 v1.34.5 @ MyComputer, n = 75 digits, 248 bits
05/22/16 11:29:28 v1.34.5 @ MyComputer, factor base: 26384 primes (max prime = 651097)
05/22/16 11:29:28 v1.34.5 @ MyComputer, single large prime cutoff: 48832275 (75 * pmax)
05/22/16 11:29:28 v1.34.5 @ MyComputer, allocating 6 large prime slices of factor base
05/22/16 11:29:28 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:29:28 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:29:28 v1.34.5 @ MyComputer, sieve interval: 8 blocks of size 32768
05/22/16 11:29:28 v1.34.5 @ MyComputer, polynomial A has ~ 9 factors
05/22/16 11:29:28 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:29:28 v1.34.5 @ MyComputer, using SPV correction of 18 bits, starting at offset 31
05/22/16 11:29:28 v1.34.5 @ MyComputer, using SSE2 for trial division and x64 sieve scanning
05/22/16 11:29:28 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:29:28 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:29:28 v1.34.5 @ MyComputer, trial factoring cutoff at 89 bits
05/22/16 11:29:28 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:29:55 v1.34.5 @ MyComputer, trial division touched 137898 sieve locations out of 2731016192
05/22/16 11:29:55 v1.34.5 @ MyComputer, 1258 relations found: 1144 full + 114 from 11205 partial, using 5209 polys (38 A polys)
05/22/16 11:29:55 v1.34.5 @ MyComputer, on average, sieving found 2.37 rels/poly and 451.34 rels/sec
05/22/16 11:29:55 v1.34.5 @ MyComputer, trial division touched 137898 sieve locations out of 2731016192
05/22/16 11:29:55 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:29:55 v1.34.5 @ MyComputer, starting SIQS on c80: 33727095233132290409342213138708322681737322487170896778164145844669592994743377
05/22/16 11:29:55 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:29:56 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:29:56 v1.34.5 @ MyComputer, n = 80 digits, 265 bits
05/22/16 11:29:56 v1.34.5 @ MyComputer, factor base: 47168 primes (max prime = 1218209)
05/22/16 11:29:56 v1.34.5 @ MyComputer, single large prime cutoff: 103547765 (85 * pmax)
05/22/16 11:29:56 v1.34.5 @ MyComputer, allocating 7 large prime slices of factor base
05/22/16 11:29:56 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:29:56 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:29:56 v1.34.5 @ MyComputer, sieve interval: 10 blocks of size 32768
05/22/16 11:29:56 v1.34.5 @ MyComputer, polynomial A has ~ 10 factors
05/22/16 11:29:56 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:29:56 v1.34.5 @ MyComputer, using SPV correction of 21 bits, starting at offset 35
05/22/16 11:29:56 v1.34.5 @ MyComputer, using SSE2 for trial division and x64 sieve scanning
05/22/16 11:29:56 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:29:56 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:29:56 v1.34.5 @ MyComputer, trial factoring cutoff at 92 bits
05/22/16 11:29:56 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:30:24 v1.34.5 @ MyComputer, trial division touched 173862 sieve locations out of 2506752000
05/22/16 11:30:24 v1.34.5 @ MyComputer, 1177 relations found: 1127 full + 50 from 10981 partial, using 3825 polys (14 A polys)
05/22/16 11:30:24 v1.34.5 @ MyComputer, on average, sieving found 3.17 rels/poly and 423.59 rels/sec
05/22/16 11:30:24 v1.34.5 @ MyComputer, trial division touched 173862 sieve locations out of 2506752000
05/22/16 11:30:24 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:30:24 v1.34.5 @ MyComputer, starting SIQS on c85: 1877138824359859508015524119652506869600959721781289179190693027302028679377371001561
05/22/16 11:30:24 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:30:25 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:30:25 v1.34.5 @ MyComputer, n = 85 digits, 280 bits
05/22/16 11:30:25 v1.34.5 @ MyComputer, factor base: 59808 primes (max prime = 1576583)
05/22/16 11:30:25 v1.34.5 @ MyComputer, single large prime cutoff: 149775385 (95 * pmax)
05/22/16 11:30:25 v1.34.5 @ MyComputer, double large prime range from 42 to 49 bits
05/22/16 11:30:25 v1.34.5 @ MyComputer, double large prime cutoff: 519747968274956
05/22/16 11:30:25 v1.34.5 @ MyComputer, allocating 7 large prime slices of factor base
05/22/16 11:30:25 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:30:25 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:30:25 v1.34.5 @ MyComputer, sieve interval: 12 blocks of size 32768
05/22/16 11:30:25 v1.34.5 @ MyComputer, polynomial A has ~ 11 factors
05/22/16 11:30:25 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:30:25 v1.34.5 @ MyComputer, using SPV correction of 20 bits, starting at offset 28
05/22/16 11:30:25 v1.34.5 @ MyComputer, using SSE2 for trial division and x128 sieve scanning
05/22/16 11:30:25 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:30:25 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:30:25 v1.34.5 @ MyComputer, trial factoring cutoff at 90 bits
05/22/16 11:30:25 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:30:57 v1.34.5 @ MyComputer, trial division touched 265269 sieve locations out of 2408841216
05/22/16 11:30:57 v1.34.5 @ MyComputer, squfof: 0 failures, 7536 attempts, 52164 outside range, 41758 prp, 7146 useful
05/22/16 11:30:57 v1.34.5 @ MyComputer, 404 relations found: 396 full + 8 from 11266 partial, using 3063 polys (8 A polys)
05/22/16 11:30:57 v1.34.5 @ MyComputer, on average, sieving found 3.81 rels/poly and 357.91 rels/sec
05/22/16 11:30:57 v1.34.5 @ MyComputer, trial division touched 265269 sieve locations out of 2408841216
05/22/16 11:30:57 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:30:57 v1.34.5 @ MyComputer, starting SIQS on c90: 427351849650748515507228344120452096326780093349980867041485502247153375067354165128307841
05/22/16 11:30:57 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:30:57 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:30:57 v1.34.5 @ MyComputer, n = 90 digits, 298 bits
05/22/16 11:30:57 v1.34.5 @ MyComputer, factor base: 71776 primes (max prime = 1924129)
05/22/16 11:30:57 v1.34.5 @ MyComputer, single large prime cutoff: 211654190 (110 * pmax)
05/22/16 11:30:57 v1.34.5 @ MyComputer, double large prime range from 42 to 50 bits
05/22/16 11:30:57 v1.34.5 @ MyComputer, double large prime cutoff: 968564097499166
05/22/16 11:30:57 v1.34.5 @ MyComputer, allocating 9 large prime slices of factor base
05/22/16 11:30:57 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:30:57 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:30:57 v1.34.5 @ MyComputer, sieve interval: 14 blocks of size 32768
05/22/16 11:30:57 v1.34.5 @ MyComputer, polynomial A has ~ 11 factors
05/22/16 11:30:57 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:30:57 v1.34.5 @ MyComputer, using SPV correction of 18 bits, starting at offset 29
05/22/16 11:30:57 v1.34.5 @ MyComputer, using SSE2 for trial division and x128 sieve scanning
05/22/16 11:30:57 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:30:57 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:30:57 v1.34.5 @ MyComputer, trial factoring cutoff at 95 bits
05/22/16 11:30:57 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:32:18 v1.34.5 @ MyComputer, trial division touched 434935 sieve locations out of 6563823616
05/22/16 11:32:18 v1.34.5 @ MyComputer, squfof: 0 failures, 7856 attempts, 101797 outside range, 40679 prp, 7387 useful
05/22/16 11:32:18 v1.34.5 @ MyComputer, 249 relations found: 249 full + 0 from 10395 partial, using 7154 polys (13 A polys)
05/22/16 11:32:18 v1.34.5 @ MyComputer, on average, sieving found 1.49 rels/poly and 131.59 rels/sec
05/22/16 11:32:18 v1.34.5 @ MyComputer, trial division touched 434935 sieve locations out of 6563823616
05/22/16 11:32:18 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:32:18 v1.34.5 @ MyComputer, starting SIQS on c95: 48404068520546498995797968938385187958997290617596242601254422967869040251141325866025672337021
05/22/16 11:32:18 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:32:18 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:32:18 v1.34.5 @ MyComputer, n = 96 digits, 317 bits
05/22/16 11:32:18 v1.34.5 @ MyComputer, factor base: 92912 primes (max prime = 2543623)
05/22/16 11:32:18 v1.34.5 @ MyComputer, single large prime cutoff: 330670990 (130 * pmax)
05/22/16 11:32:18 v1.34.5 @ MyComputer, double large prime range from 43 to 51 bits
05/22/16 11:32:18 v1.34.5 @ MyComputer, double large prime cutoff: 2162285181933886
05/22/16 11:32:18 v1.34.5 @ MyComputer, allocating 9 large prime slices of factor base
05/22/16 11:32:18 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:32:18 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:32:18 v1.34.5 @ MyComputer, sieve interval: 18 blocks of size 32768
05/22/16 11:32:18 v1.34.5 @ MyComputer, polynomial A has ~ 12 factors
05/22/16 11:32:18 v1.34.5 @ MyComputer, using multiplier of 5
05/22/16 11:32:18 v1.34.5 @ MyComputer, using SPV correction of 19 bits, starting at offset 31
05/22/16 11:32:18 v1.34.5 @ MyComputer, using SSE2 for trial division and x128 sieve scanning
05/22/16 11:32:18 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:32:18 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:32:18 v1.34.5 @ MyComputer, trial factoring cutoff at 101 bits
05/22/16 11:32:18 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:34:56 v1.34.5 @ MyComputer, trial division touched 616272 sieve locations out of 13274578944
05/22/16 11:34:56 v1.34.5 @ MyComputer, squfof: 0 failures, 8404 attempts, 183338 outside range, 42361 prp, 7808 useful
05/22/16 11:34:56 v1.34.5 @ MyComputer, 217 relations found: 214 full + 3 from 10783 partial, using 11253 polys (10 A polys)
05/22/16 11:34:56 v1.34.5 @ MyComputer, on average, sieving found 0.98 rels/poly and 69.25 rels/sec
05/22/16 11:34:56 v1.34.5 @ MyComputer, trial division touched 616272 sieve locations out of 13274578944
05/22/16 11:34:56 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:34:56 v1.34.5 @ MyComputer, starting SIQS on c100: 1802716097522165018257858828415111497060066282677325501816640492782221110851604465066510547671104729
05/22/16 11:34:56 v1.34.5 @ MyComputer, random seeds: 420784925, 3115613084
05/22/16 11:34:57 v1.34.5 @ MyComputer, ==== sieve params ====
05/22/16 11:34:57 v1.34.5 @ MyComputer, n = 100 digits, 330 bits
05/22/16 11:34:57 v1.34.5 @ MyComputer, factor base: 115504 primes (max prime = 3219889)
05/22/16 11:34:57 v1.34.5 @ MyComputer, single large prime cutoff: 466883905 (145 * pmax)
05/22/16 11:34:57 v1.34.5 @ MyComputer, double large prime range from 44 to 52 bits
05/22/16 11:34:57 v1.34.5 @ MyComputer, double large prime cutoff: 4023240780765336
05/22/16 11:34:57 v1.34.5 @ MyComputer, allocating 9 large prime slices of factor base
05/22/16 11:34:57 v1.34.5 @ MyComputer, buckets hold 2048 elements
05/22/16 11:34:57 v1.34.5 @ MyComputer, using 32k sieve core
05/22/16 11:34:57 v1.34.5 @ MyComputer, sieve interval: 20 blocks of size 32768
05/22/16 11:34:57 v1.34.5 @ MyComputer, polynomial A has ~ 13 factors
05/22/16 11:34:57 v1.34.5 @ MyComputer, using multiplier of 1
05/22/16 11:34:57 v1.34.5 @ MyComputer, using SPV correction of 20 bits, starting at offset 34
05/22/16 11:34:57 v1.34.5 @ MyComputer, using SSE2 for trial division and x128 sieve scanning
05/22/16 11:34:57 v1.34.5 @ MyComputer, using SSE4.1 enabled 32k sieve core
05/22/16 11:34:57 v1.34.5 @ MyComputer, using SSE2 for resieving 13-16 bit primes
05/22/16 11:34:57 v1.34.5 @ MyComputer, trial factoring cutoff at 105 bits
05/22/16 11:34:57 v1.34.5 @ MyComputer, ==== sieving started (1 thread) ====
05/22/16 11:39:04 v1.34.5 @ MyComputer, trial division touched 582252 sieve locations out of 20115619840
05/22/16 11:39:04 v1.34.5 @ MyComputer, squfof: 0 failures, 8129 attempts, 166111 outside range, 39960 prp, 7607 useful
05/22/16 11:39:04 v1.34.5 @ MyComputer, 168 relations found: 167 full + 1 from 10292 partial, using 15347 polys (12 A polys)
05/22/16 11:39:04 v1.34.5 @ MyComputer, on average, sieving found 0.68 rels/poly and 42.23 rels/sec
05/22/16 11:39:04 v1.34.5 @ MyComputer, trial division touched 582252 sieve locations out of 20115619840
05/22/16 11:39:04 v1.34.5 @ MyComputer, ==== post processing stage (msieve-1.38) ====
05/22/16 11:44:54 v1.34.5 @ MyComputer, 
05/22/16 11:44:54 v1.34.5 @ MyComputer, ****************************
05/22/16 11:44:54 v1.34.5 @ MyComputer, Starting factorization of 3049009244516986749891306124143585825137265321629113330682805634662535650727494003213745880694161287390279766426884986584627658868131304073743144791703887
05/22/16 11:44:54 v1.34.5 @ MyComputer, using pretesting plan: normal
05/22/16 11:44:54 v1.34.5 @ MyComputer, no tune info: using qs/gnfs crossover of 95 digits
05/22/16 11:44:54 v1.34.5 @ MyComputer, ****************************
05/22/16 11:44:54 v1.34.5 @ MyComputer, div: found prime factor = 3
05/22/16 11:44:54 v1.34.5 @ MyComputer, div: found prime factor = 3
05/22/16 11:44:54 v1.34.5 @ MyComputer, div: found prime factor = 37
05/22/16 11:44:54 v1.34.5 @ MyComputer, div: found prime factor = 59
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 3, starting 1000 iterations on C150
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 2, starting 1000 iterations on C150
05/22/16 11:44:54 v1.34.5 @ MyComputer, prp5 = 23773
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 2, starting 1000 iterations on C145
05/22/16 11:44:54 v1.34.5 @ MyComputer, prp5 = 52489
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 2, starting 1000 iterations on C141
05/22/16 11:44:54 v1.34.5 @ MyComputer, prp5 = 94999
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 2, starting 1000 iterations on C136
05/22/16 11:44:54 v1.34.5 @ MyComputer, rho: x^2 + 1, starting 1000 iterations on C136
05/22/16 11:44:54 v1.34.5 @ MyComputer, pm1: starting B1 = 150K, B2 = gmp-ecm default on C136
05/22/16 11:44:54 v1.34.5 @ MyComputer, current ECM pretesting depth: 0.00
05/22/16 11:44:54 v1.34.5 @ MyComputer, scheduled 30 curves at B1=2000 toward target pretesting depth of 41.85
05/22/16 11:44:54 v1.34.5 @ MyComputer, prp9 = 165814283 (curve 2 stg1 B1=2000 sigma=3481485260 thread=0)
05/22/16 11:44:54 v1.34.5 @ MyComputer, Finished 2 curves using Lenstra ECM method on C136 input, B1=2K, B2=gmp-ecm default
05/22/16 11:44:54 v1.34.5 @ MyComputer, current ECM pretesting depth: 0.00
05/22/16 11:44:54 v1.34.5 @ MyComputer, scheduled 28 curves at B1=2000 toward target pretesting depth of 39.08
05/22/16 11:44:56 v1.34.5 @ MyComputer, Finished 28 curves using Lenstra ECM method on C127 input, B1=2K, B2=gmp-ecm default
05/22/16 11:44:56 v1.34.5 @ MyComputer, current ECM pretesting depth: 15.18
05/22/16 11:44:56 v1.34.5 @ MyComputer, scheduled 74 curves at B1=11000 toward target pretesting depth of 39.08
05/22/16 11:45:10 v1.34.5 @ MyComputer, Finished 74 curves using Lenstra ECM method on C127 input, B1=11K, B2=gmp-ecm default
05/22/16 11:45:10 v1.34.5 @ MyComputer, current ECM pretesting depth: 20.24
05/22/16 11:45:10 v1.34.5 @ MyComputer, scheduled 214 curves at B1=50000 toward target pretesting depth of 39.08
05/22/16 11:46:00 v1.34.5 @ MyComputer, Finished 217 curves using Lenstra ECM method on C127 input, B1=50K, B2=gmp-ecm default
05/22/16 11:46:00 v1.34.5 @ MyComputer, pm1: starting B1 = 3750K, B2 = gmp-ecm default on C127
05/22/16 11:46:08 v1.34.5 @ MyComputer, current ECM pretesting depth: 25.34
05/22/16 11:46:08 v1.34.5 @ MyComputer, scheduled 430 curves at B1=250000 toward target pretesting depth of 39.08
05/22/16 11:52:46 v1.34.5 @ MyComputer, Finished 434 curves using Lenstra ECM method on C127 input, B1=250K, B2=gmp-ecm default
05/22/16 11:52:46 v1.34.5 @ MyComputer, pm1: starting B1 = 15M, B2 = gmp-ecm default on C127
05/22/16 11:53:17 v1.34.5 @ MyComputer, current ECM pretesting depth: 30.46
05/22/16 11:53:17 v1.34.5 @ MyComputer, scheduled 904 curves at B1=1000000 toward target pretesting depth of 39.08
05/22/16 12:48:14 v1.34.5 @ MyComputer, Finished 910 curves using Lenstra ECM method on C127 input, B1=1M, B2=gmp-ecm default
05/22/16 12:48:14 v1.34.5 @ MyComputer, current ECM pretesting depth: 35.56
05/22/16 12:48:14 v1.34.5 @ MyComputer, scheduled 1654 curves at B1=3000000 toward target pretesting depth of 39.08
05/22/16 17:23:08 v1.34.5 @ MyComputer, Finished 1659 curves using Lenstra ECM method on C127 input, B1=3M, B2=gmp-ecm default
05/22/16 17:23:08 v1.34.5 @ MyComputer, final ECM pretested depth: 39.09
05/22/16 17:23:08 v1.34.5 @ MyComputer, scheduler: switching to sieve method
05/22/16 17:23:08 v1.34.5 @ MyComputer, nfs: commencing nfs on c127: 7895310890610138117346138742587480058872721379409600821256965086094305607017396011635206549095850771795994311056065762664097729
05/22/16 17:23:08 v1.34.5 @ MyComputer, nfs: commencing poly selection with 7 threads
05/22/16 17:23:08 v1.34.5 @ MyComputer, nfs: setting deadline of 5566 seconds
05/22/16 19:39:14 v1.34.5 @ MyComputer, nfs: completed 7 ranges of size 250 in 8165.4403 seconds
05/22/16 19:39:14 v1.34.5 @ MyComputer, nfs: best poly = # norm 3.692679e-012 alpha -7.514877 e 1.145e-010 rroots 3
05/22/16 19:39:14 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/22/16 20:28:07 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/22/16 21:13:57 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/22/16 22:01:47 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/22/16 22:50:18 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/22/16 23:37:49 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 00:28:22 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 01:18:25 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 02:09:10 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 02:59:06 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 03:51:28 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 04:40:40 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 05:30:02 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 06:20:32 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
05/23/16 07:12:22 v1.34.5 @ MyComputer, nfs: commencing lattice sieving with 7 threads
 
 
 
 

Edited by kashkns, 23 May 2016 - 07:26 AM.


BC AdBot (Login to Remove)

 


#2 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,075 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:11:47 PM

Posted 23 May 2016 - 04:36 AM

Hi,

 

Check this: TeslaCrypt shuts down and Releases Master Decryption Key


• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#3 kashkns

kashkns
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:10:47 PM

Posted 23 May 2016 - 07:25 AM

Hi

I did check this initially but unfortunately this does not apply to the .aaa extension variant.



#4 Tsubakura

Tsubakura

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Arnhem
  • Local time:12:47 AM

Posted 23 May 2016 - 07:46 AM

Hi

I did check this initially but unfortunately this does not apply to the .aaa extension variant.

 

Check again, because the .aaa extension variant is included in the TeslaDecoder.

If for some reason it still doesn't work, you might be dealing with something else.

 

- Tsubakura



#5 Demonslay335

Demonslay335

    Ransomware Hunter


  • Security Colleague
  • 3,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:05:47 PM

Posted 23 May 2016 - 11:32 AM

The master key that was released does not decrypt earlier variants. It is the 4th Tesla key, which will only decrypt TeslaCrypt 3.0 - 4.2 variants (.xxx, .ttt, .micro, .mp3, and no extension).

 

You have to continue with factoring for this case. A C127 will most likely take a few days on an i7 if you are using all cores. You will just have to be patient. There isn't much you can do to make it faster unless you have 30 years experience with number theory and the principles of how the NFS algorithm works; TL;DR, letting Yafu do it's thing is the best way. You would only maybe shave an hour or two of work if you delved deeper into the number theory world of understanding elliptical curves and all of that fun stuff (that's still mostly over my head).

 

Since you did properly let Yafu stop, you can resume the task by running the exact same command, but add "-R" to the end. It should resume where you left it. I would also add "-v" so it will give you an ETA (don't believe the very first ETA you see, it will be astronomical until it runs another round of sieving).


logo-25.pngID Ransomware - Identify What Ransomware Encrypted Your Files [Support Topic]

ransomnotecleaner-25.png RansomNoteCleaner - Remove Ransom Notes Left Behind [Support Topic]

cryptosearch-25.pngCryptoSearch - Find Files Encrypted by Ransomware [Support Topic]

If I have helped you and you wish to support my ransomware fighting, you may support me here.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,596 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:06:47 PM

Posted 23 May 2016 - 06:26 PM

Support for TeslaCrypt 2.0 (and older versions) is provided in this topic where you can ask questions and seek further assistance.Support for decryption requests ia provided here:Rather than have everyone with individual topics, it would be best (and more manageable for staff) if you posted any more questions, comments or requests for assistance in one of the above support topic discussions, particularly the last if dealing with one of the newer variants. To avoid unnecessary confusion, this topic is closed.

Thanks
The BC Staff
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users