Regarding Sicarii’s broken decryption process, researchers said that “during execution, the malware regenerates a new RSA key pair locally, uses the newly generated key material for encryption, and then discards the private key.”
You must log in or register to comment.
Ransomware that can’t be decrypted is just destructive malware like any other.
I bet other ransomware creators hate this. If victims can’t even get their data back by paying, more victims will stop paying across the board.
So they basically created a hashing function?
A hash is at least consistent when given identical inputs. What they created is more like a digital incinerator.
“ransomware can’t be decrypted” implies the ransomware itself can’t be decrypted, ugh
