so i've got a machine which has been infected by ransomware.
Uploading the ransom note to one of the security sites tells me that it is 'Globe Imposter 2.0', for which there is no known decryptor.
I'm wondering, given that we know what it is and know it uses a AES 256 Encryption, can I not somehow attempt to brute force the encryption key if I can find a unencrypted version of one of the infected files?
Am I right in thinking if we know the encryption type, we know the length of the encryption key?
Am I thinking about this too simplistically?
I have some pretty powerful servers sat around here doing nothing - I could easily put them to use if this were something that is possible.
any advice is appriciated
Edited by Chris Cosgrove, 13 April 2018 - 04:56 PM.
Moved from Windows Server to Ransomware Help and Support