The master decryption keys for GandCrab ransomware are now available for all PC users. These keys can be used to decrypt GandCrab versions 4 to 5.2.
The keys are a lifesaver for those who are trying to decrypt their systems affected GandCrab attacks.
The FBI collaborated with the LEA agencies belonging to 8 different European Union countries to work on this project. Furthermore, Europol and the security solutions provider BitDefender worked with FBI to develop a tool that can decrypt the GandCrab malware.
The GandCrab ransomware works similar to the way how other ransomware attacks operate these days. First, it encrypts all the files on the infected system.
Then the attackers demand a huge ransomware amount in order to decrypt your data. The attackers hold your data until the ransomware is transferred in cryptocurrency.
The impact of GandCrab
GandCrab was first launched in 2018. If we look at the statistics, this ransomware attack has affected more than 500,000 PCs worldwide.
Surprisingly, the victims have paid more than $300 million dollars until now.
The FBI further describes that GandCrab has been developed based on a business model named “ransomware-as-a-service”.
It is worth mentioning that GandCrab licenses are sold to others. The developers who worked on the malware keep 40 percent of the ransomware amount.
Moreover, the rest of the 60 percent is kept by those who purchase licenses. The malware developers are earning millions by selling individual licenses on an annual basis.
wannacry also royally screwed itself over by using a hardcoded kill switch that literally anyone could flip, so it only spread for four days. Granted, it got 100k out of 200,000 infected in four days. Grancrab only had an estimated 50,000 infected after its first month, but it built up gradually and improved itself over time.
GandCrab decryption keys
If you are one of those who are affected by GandCrab you can use the decryption keys published by the FBI.
However, it is not yet clear how the federal security agency got access to the decryption keys.
RELATED ARTICLES YOU NEED TO CHECK OUT:
- Hackers can take over your printer: Here’s how to stop them
- Hackers use old malware in new packaging to attack Windows 10 PCs