Jump to content

My server windows 2012 was infected by .krab ransom


etech

Recommended Posts

We don't have anything to decrypt your data if a ransomware attack happens. We look for more malware and things like that. You might want to turn 'blocking' on if it isn't already in the immunet settings though. That could help.


There should be ransomware specific softwares that could have key(s).

The .krab file is a grancrab, which signatures DO exist for detecting but Immunet and clamav does NOT decrypt it.

Below is a NON CISCO tool, use at your own risk.
https://www.nomoreransom.org/uploads/GANDCRAB RANSOMWARE DECRYPTION TOOL.pdf

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...