ShopDreamUp AI ArtDreamUp
Deviation Actions
Suggested Deviants
Suggested Collections
Description
Update V1.1.1: Program is now able to use registry keys as the RSA key instead of only being able to use .bin
binary blobs. To do this export the private key from the registry as a .reg file and place it in the same
directory as Crypto-Unlocker-Run.py. You don't need to remove all the other entires from the .reg file, just
make sure the private key entry is in there.
Update V1.1.5: Added two checks to make sure the file being decrypted is actually encrypted.
If the file is not you will be alerted and the file will be skipped. There are 14 bytes of data that must
match if a file is to be considered encrypted to prevent accidentally decrypting something into garbage.
Also added code to prevent Crypto-Unlocker from trying to decrypt a file that doesn't conform to AES decryption standards which would result in the program crashing. You will be notified if it needs to skip a file because of this.
Again, I 'm simply going to copy the readme into here.
Before I start I must state that this program will NOT decrypt anything without the proper RSA key. But it
WILL be able to utilize the RSA key to decrypt all the AES keys in the encrypted files and use that key to
decrypt the actual file data. This was written because cryptolocker will miss files sometimes if they are
moved when the decryption begins. I'm sure people would rather use this script to finish the job than
rely on downloading the decrypter from the virus authors again and reconstructing the file paths in the
registry one by one. Thousands of files can make that tedious work.
This program was written with the intent to fix damages done by incomplete cryptolocker decryptions.
A friend mine had his company hit by the virus and, even though they paid the ransom some of their
files were missed. This was because the drive letter mapping had changed between when the files
were encrypted and when they were decrypted. I studied the virus extensively within the bounds of
my capability and wrote this program.
There is no warrenty guranteed or implied through the use of this program. As of the time of this writing
this program cannot distinguish between cryptolocker encrypted files and non-encrypted files.
This means if you give it a file that isn't encrypted it will either crash or create something that is basically
garbage. This program is written to NOT overwrite the files it decrypts, but just in case make sure that any
files placed in the "Encrypted Files" folder aren't your only copy of them.
Again, there is no warrenty guranteed or implied and the use of this program is entirely of your own volition.
Using this program constitutes your agreement to not hold the author liable for any damages caused by it.
If you need reassurance of this program's function ask someone you know who programs to look over
it's code and verify it is not malicious.
Your friend, Mo
This program requires python to run. I'm not sure which version is required, but it was programmed and
has shown to work with python 3.3 so that should be the one to use.
Pycrypto is required for running this script.
pycrypto installers can be downloaded from here github.com/appurify/appurify-p…
binary blobs. To do this export the private key from the registry as a .reg file and place it in the same
directory as Crypto-Unlocker-Run.py. You don't need to remove all the other entires from the .reg file, just
make sure the private key entry is in there.
Update V1.1.5: Added two checks to make sure the file being decrypted is actually encrypted.
If the file is not you will be alerted and the file will be skipped. There are 14 bytes of data that must
match if a file is to be considered encrypted to prevent accidentally decrypting something into garbage.
Also added code to prevent Crypto-Unlocker from trying to decrypt a file that doesn't conform to AES decryption standards which would result in the program crashing. You will be notified if it needs to skip a file because of this.
Again, I 'm simply going to copy the readme into here.
Before I start I must state that this program will NOT decrypt anything without the proper RSA key. But it
WILL be able to utilize the RSA key to decrypt all the AES keys in the encrypted files and use that key to
decrypt the actual file data. This was written because cryptolocker will miss files sometimes if they are
moved when the decryption begins. I'm sure people would rather use this script to finish the job than
rely on downloading the decrypter from the virus authors again and reconstructing the file paths in the
registry one by one. Thousands of files can make that tedious work.
This program was written with the intent to fix damages done by incomplete cryptolocker decryptions.
A friend mine had his company hit by the virus and, even though they paid the ransom some of their
files were missed. This was because the drive letter mapping had changed between when the files
were encrypted and when they were decrypted. I studied the virus extensively within the bounds of
my capability and wrote this program.
There is no warrenty guranteed or implied through the use of this program. As of the time of this writing
this program cannot distinguish between cryptolocker encrypted files and non-encrypted files.
This means if you give it a file that isn't encrypted it will either crash or create something that is basically
garbage. This program is written to NOT overwrite the files it decrypts, but just in case make sure that any
files placed in the "Encrypted Files" folder aren't your only copy of them.
Again, there is no warrenty guranteed or implied and the use of this program is entirely of your own volition.
Using this program constitutes your agreement to not hold the author liable for any damages caused by it.
If you need reassurance of this program's function ask someone you know who programs to look over
it's code and verify it is not malicious.
Your friend, Mo
This program requires python to run. I'm not sure which version is required, but it was programmed and
has shown to work with python 3.3 so that should be the one to use.
Pycrypto is required for running this script.
pycrypto installers can be downloaded from here github.com/appurify/appurify-p…
© 2013 - 2024 Chief-01
Comments0
Join the community to add your comment. Already a deviant? Log In