Jump to content

My server windows 2012 was infected by .krab ransom


etech
 Share

Recommended Posts

We don't have anything to decrypt your data if a ransomware attack happens. We look for more malware and things like that. You might want to turn 'blocking' on if it isn't already in the immunet settings though. That could help.


There should be ransomware specific softwares that could have key(s).

The .krab file is a grancrab, which signatures DO exist for detecting but Immunet and clamav does NOT decrypt it.

Below is a NON CISCO tool, use at your own risk.
https://www.nomoreransom.org/uploads/GANDCRAB RANSOMWARE DECRYPTION TOOL.pdf

Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share

×
×
  • Create New...