Nataku4ca 0 Posted November 13, 2013 Share Posted November 13, 2013 Hi Guys, I think I probably know the answer, but just for kicks anyone have any way/tools that I can use to decrypt files encrypted by Win32/Kryptik.BORN ? I'm out of ideas, and web searches are not turning up any thing that can help even brute force decryptors will make me happy, anything? please? Thanks, Link to comment Share on other sites More sharing options...
Arakasi 549 Posted November 13, 2013 Share Posted November 13, 2013 Without the private keys you could spend 365 days trying to decipher unfortunately. They were sent to the rogue server reporting on these infections. Link to comment Share on other sites More sharing options...
Nataku4ca 0 Posted November 13, 2013 Author Share Posted November 13, 2013 oh well, i guess it's time to give the bad news, thanks Link to comment Share on other sites More sharing options...
mattspchelp 4 Posted November 23, 2013 Share Posted November 23, 2013 Can I ask if you have checked shadow copies on the machine? as those files will still be unencrypted, Failing that this is why a backup is a good thing to have even on a single machine. Regards Matt Link to comment Share on other sites More sharing options...
Administrators Marcos 5,273 Posted November 24, 2013 Administrators Share Posted November 24, 2013 Kryptik detections are detections of the packer and doesn't tell anything about the malware itself. I'd suggest submitting a couple of encrypted files along with a file containing instructions how to get the decryption key to ESET to confirm they cannot be decoded. Link to comment Share on other sites More sharing options...
Recommended Posts