Jump to content
Sign in to follow this  
etech

My server windows 2012 was infected by .krab ransom

Recommended Posts

We don't have anything to decrypt your data if a ransomware attack happens. We look for more malware and things like that. You might want to turn 'blocking' on if it isn't already in the immunet settings though. That could help.


There should be ransomware specific softwares that could have key(s).

The .krab file is a grancrab, which signatures DO exist for detecting but Immunet and clamav does NOT decrypt it.

Below is a NON CISCO tool, use at your own risk.
https://www.nomoreransom.org/uploads/GANDCRAB RANSOMWARE DECRYPTION TOOL.pdf

  • Like 1

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×