I have been communicating with email@example.com for the Ransoware payment, have made the payment, ran the scanning tool, but when I tried to send the keys located from the tool, I am getting these replies from the Gmail account.
Delivery incomplete There was a temporary problem delivering your message to firstname.lastname@example.org. Gmail will retry for 21 more hours. You'll be notified if the delivery fails permanently.
Anyone else in this scenario? If you contact one of the other emails that the ransomware sets, is there a chance to get the decryptor from them? Any advice?
Does your scanning tool offer a decrypt button on it? The one I've seen does. How many keys did you find? I was able to locate 6 keys for about 500,000 files. I'm trying to get a feel for the number of keys this thing leaves behind.
I haven't tried to decrypt yet, probably this weekend.
These guys are all using the same package from what I understand so at least in Theory you might be able to get another one to help you.
Do you have a scanning tool with the decrypt button on it? I'd be willing to try it out on a test pc we have just to see if it'll work. I'll give you an email address to send it to if you do.
I do have the scanning tool with the decrypt button on it. Unfortunately I never received the encryption keys to insert into the tool to decrypt.
I'm not exactly sure how many keys were used, but for comparison purposes, here is 1 key
and here are the total amount from a 7GB file server