Matrix Ransomware URGENT

[michael chiklis]

Does someone know how to recover data encrypted by Matrix ransomware?

[northwind]

It's not possible at the moment.

Sad thing is that we're expecting Matrix to hit hard in the next few months. Matrix was never a major player (even though it's one of the oldest strains), but since last week it's being distributed via RIG exploit kit and there is rumour that it'll be the new (now almost dead) Locky

[djdyma]

Very interesting which antivirus you use ?

[labtech]

Oh boy, here we go again. Good to know, thanks.

[michael chiklis]

Case solved, customer (medical doctor) got backup of his notebook work from hospital server.

[pepe]

hopefully the hospital servers won't get infected...

nor any workstations accessing it...

[michael chiklis]

Customer told me that he used his notebook only for work, he never accessed into any strange website (no porn, no warez) and he never installed illegal programs (crack, keygen, ecc). Also he never installed any SW or browser plugins. He was using updated antivirus and he never plugged external drives (exept his usb flash drive).
He thinks that very likely he got infected by some email attachment (probably some kind of office malicious macro).

After that i told him there was any solution for data recovery at the moment, he asked help to a computer technician that works for the hospital, he suggested that he could help him by getting backup from the server.
Before getting his file back into the notebook, tech has formatted and reinstalled OS on his notebook, so i don't think server got infected.