I’m tpying with a fractured arm. So my typing will suck.
In repsonse to you PM. It should probably be in the General Section. THis forum is for people who ar currently infected w/ cryptolocker.
I say this because it’s a discussion, not trying to aim at removing the malware. In which case, just run MBAM. The encrypted files currently have no way of being deccryted short of hacking the server that is hosting the keys. Which no one knows of.
Since I cn’t test this. Is their not a way you can retrieve the password via Wireshark since the malware has to send out the key? Intercept that key and you should be good to go. Or is that an early type of cryptolocker?