• Donate
    TheWindowsForum.com needs donations to stay online!
    Love TheWindowsForum.com? Then help keep it alive by sending a donation!

Malware Ransomware Grandcrab 5.2

WELCOME TO THEWINDOWSFORUM COMMUNITY!

Our community has more than 63,000 registered members, and we'd love to have you as a member. Join us and take part in our unbiased discussions among people of all different backgrounds about Windows OS, Software, Hardware and more.

Register Log in
M

MagicBoo

Member
Jun 3, 2019
5
0
My computer recently became infected with a malware called grandcrab 5.2, it does not bother me to format my computer but I have a portable hard drive that does not want to lose the files, how can I recover my work files

PD. Sorry for my english my language is Spanish
 
You can recover your images anyway - something I found by accident after taking an 82GB hit from Gandcrab 5.2.

I had Google Backup & Sync running in the background, it identified the newly encrypted files (in my case image_name.jpg.vnveni) as images & uploaded them to Google Photos - where they appeared as images. No shit, Google's servers don't recognise Gandcrab encryption.

I was like WTF? & did intend to research this thing, but was a bit busy batting Gandcrab off from my network, recovering from backup then running extra insurance backups across my clientbase. Then I forgot about it. Until now.
 
Wow that's some great news! Go figure. I would have never guessed. I wonder what processing google does to retrieve the images? I have to admit I have yet to a system with that infection yet.
Thanks for the info Megabyte. Heard it here first.
 
GOOD NEWS!
A decrypter for GandCrab V 5.2 has been released.

www.nomoreransom.org

Decryption Tools | The No More Ransom Project

IMPORTANT! Before downloading and starting the solution, read the how-to guide. Make sure you remove the malware from your system first, otherwise it will repeatedly lock your system or encrypt files. Any reliable antivirus solution can do this for you.
www.nomoreransom.org www.nomoreransom.org
 
DVDR_Dog said:
GOOD NEWS!
A decrypter for GandCrab V 5.2 has been released.

www.nomoreransom.org

Decryption Tools | The No More Ransom Project

IMPORTANT! Before downloading and starting the solution, read the how-to guide. Make sure you remove the malware from your system first, otherwise it will repeatedly lock your system or encrypt files. Any reliable antivirus solution can do this for you.
www.nomoreransom.org www.nomoreransom.org
Click to expand...

Thanks for your post, i just saw it now. Good news :)
 
Please ignore all of tolikkk's posts and do not follow any links provided.
 
You must log in or register to reply here.

Similar threads

AFFASocial
Stealthy SeroXen RAT malware increasingly used to target gamers
Replies
0
Views
401
AFFASocial
AFFASocial
AFFASocial
Stealthy MerDoor malware uncovered after five years of attacks
Replies
0
Views
601
AFFASocial
AFFASocial
AFFASocial
The new info-stealing malware operations to watch out for
Replies
0
Views
594
AFFASocial
AFFASocial
AFFASocial
New info-stealer malware infects software pirates via fake cracks sites
Replies
0
Views
1K
AFFASocial
AFFASocial
AFFASocial
Chinese hackers use Google Drive to drop malware on govt networks
Replies
1
Views
911
DVDR_Dog
DVDR_Dog

Latest posts

Back