Last week, we reported that the master decryption keys for the Crysis ransomware have been made public. Now security vendor ESET has come out with a free tool to help Crysis ransomware victims recover their files by decrypting them. Here are the details.
The Crysis ransomware was recently found to have been targeting Australian and New Zealand businesses.
The distinctive feature of Crysis ransomware is that it tries to brute force remote desktop protocol (RDP) credentials to gain access to a victim's computer and then install malware on their machine to encrypt files. These files would then be renamed using one of the following extensions: .xbtl, .crysis or .crypt.
Kaspersky Lab already released its Rakhni decryptor tool that deals with Crysis ransomware locked files but for those who prefer a cleaner user experience, you may want to give the ESET software a go. You can download the ESET Crysis Decryptor over at the company's support page, which also has detailed instructions on how to use it.
Have you ever been a victim of ransomware? Tell us your story in the comments.