A German programmer hacked the Muhstik ransomware virus distributor server after paying 0.09 BTC to restore access to files.
In a message on the Bleeping Computer forum, Tobias Fromel, under the nickname battleck, wrote that he managed to get the entire database of encryption keys and a decryptor program, which he posted free of charge to the network for 2858 victims of the attacker.
Fromel acknowledged that his actions were illegal, but given that the virus distributor himself used hacked servers, he called himself “not the worst guy” in this situation. He also noted that he had paid ransomware to decrypt cryptocurrency files in the amount of € 670.
Providing free tools for decrypting files to victims of the Bitcoin ransomware, Fromel still indicated his BTC wallet for a voluntary reward for the work he did.
In the comments on the Muhstik forum thread, users confirmed that the computer’s battleck identifiers (HIDs) that were uploaded are correct and that the keys with the decoder work.
Recall that earlier, Emsisoft released a free tool to recover files encrypted as a result of the attack of the Bitcoin ransomware virus WannaCryFake.
Subscribe to BlockchainJournal news on Facebook !
BlockchainJournal.news
BlockchainJournal.news
