Edited by tadifero, 01 September 2016 - 10:09 AM.
Jump to content
Posted 01 September 2016 - 11:01 AM
You need to upload an encrypted file and the ransom note here: https://id-ransomware.malwarehunterteam.com/
The site will attempt to make a positive ID of your ransomware and give you guidance on what to do next.
We are drowning in information - and starving for wisdom.
Posted 01 September 2016 - 11:16 AM
Most likely it is CTB-Locker based on the random extension (Maktub also used random extensions of that length but hasn't been as active lately). ID Ransomware will have the best chance at identifying if you provide it a ransom note.
If I have helped you and you wish to support my ransomware fighting, you may support me here.
Posted 01 September 2016 - 12:30 PM
0 members, 0 guests, 0 anonymous users