Forum rules
Please do not post questions about data recovery cases here (use this forum instead). This forum is for topics on finding new ways to recover data. Accessing firmware, writing programs, reading bits off the platter, recovering data from dust...MKP ransomware decryption - anyone has success?
November 18th, 2023, 5:52
One my client's network is hacked by this ransomware and all files are encrypted .This is Makop ransomware variant.
Is there anyway to decrypt and what will be cost of decrypter and key.
Is there anyway to decrypt and what will be cost of decrypter and key.
- Attachments
-
Re: MKP ransomware decryption - anyone has success?
November 18th, 2023, 6:20
If I remember correctly it, or some variants at least, do not encrypt entire files if file is above xMB file size but few 256 KB areas only. So then depending on file type partial file repair may be a last option.
Re: MKP ransomware decryption - anyone has success?
November 18th, 2023, 8:28
What he says ^^^ is correct.
Re: MKP ransomware decryption - anyone has success?
November 19th, 2023, 11:16
Arch Stanton wrote:If I remember correctly it, or some variants at least, do not encrypt entire files if file is above xMB file size but few 256 KB areas only. So then depending on file type partial file repair may be a last option.
Thanks Arch Stanton ,Thanks for replying
You are right I have repaired few SQL files though repaired files do not directly open in clients software , developer was successful to extract useful data and reconstruct database again.
Unfortunately in this case this particular variant is super strong and clients entire network is affected (having nearly 500GB office files) so cannot work on thousands of files .Besides doc & pdf files are having weak structure , I haven't been successful to repair any file of these 2 types.
Powered by phpBB © phpBB Group.