A friend got ransomwared by Pajeets who want $500. Now, India is a country that is too stupid to install sewers...

A friend got ransomwared by Pajeets who want $500. Now, India is a country that is too stupid to install sewers, so these 'jeets probably stored the encryption key as a string literal. If thats the case all Id need to do is dump the memory and look for the only string literal that isnt a hash. My problem is I have no idea how to probe the memory of an encrypted HD. What tools do I need?

Other urls found in this thread:

pcworld.com/article/3104180/software/pc-nuking-malware-sneakily-replaces-popular-free-software-on-fosshub.html
twitter.com/NSFWRedditGif

A gun to shoot yourself with

>getting bamboozles by loopoos

might as well kys

>trying unbamboozle a friend

You dont get it, Im trying to put the POO in the LOO.

...

Oh look, another buzzword spouting idiot who has absolutely no idea what they are talking about.

i'm curious, how did you get infected? i have never gotten infected, ever. *knock on wood*

calm down rohinder

>corporate
Almost had me

If I lied and said it wasnt a friend and was me would someone actually help me?

Whats wrong with what Im trying to do?

pls rspnd

Okay, its ransomware. That's my response. Google around and see if anyone has cracked it before or if there is a fix for it. Look up a tutorial on how to dump memory, what tools you'll need, etc. Asking Sup Forums for tech support, especially about ransomware, isn't going to get you any help.

We aren't Elliot, just do your own research.

>get ransomware
>boot into any *nix operating system off a live usb
>mount the windows partition
>remove pajeets ransomware
>reboot into windows

How is this too complicated for winblows users?

That only works if they don't encrypt the partition

the files *

faggot

Dutch? Isn't from Denmark?

Are you a fucking retard?

how did he get ransomware?

what is this, the 90s?
I thought only Android was getting this stuff

>We aren't Elliot

>tfw you will never be Elliot
Obviously I am jealous of his hacking skills, but also his adderall hookup in more recent episodes is really appealing. I've been meaning to try to get a script, but haven't been to the doc yet.

>I wasn't alive in the 90s: the post

Pop out the drive, don't reboot it, or your shit will probably get double encrypted. Use another machine to hunt down the ransom note and figure out which specific variant hit you. Then google that shit to find out if it's been cracked. If not, you can pay, or set the drive aside and pray for the day there is a workaround.

It's pretty easy to get if you always browse the internet with scripts enabled and have no good adblocker. most free security suites arent going to stop zero day ransomwares. EMET/Crypto Prevent probably would.

no adblocker = malicious hijacked ad gets shown = infected. just so you know, hijacked ads aren't just on sketchy porn sites. it can occur even on legit sites. of course this is just the most common method. tons of other ways, but they all involve javascript

also this happened like a few days ago on foss hub

pcworld.com/article/3104180/software/pc-nuking-malware-sneakily-replaces-popular-free-software-on-fosshub.html

basically, yea, that user was living under a rock.

>Swedish masterrace

Why would you want to take Somalian and middle eastern dick all day

Spoiler, they're the same person.

Wtf I hate gnome now!

>it can occur even on legit sites
One got me right on the ebay.com main page. Of course I had everything unblocked there because the site is buggy even at full functionality, and I didn't want to disable something that would fuck up my listings and give everybody free international overnight shipping.

>You got owned by people who have yet to figure out how toilets work

>probe the memory of an encrypted HD
You probably need to write a GUI interface in Visual Basic for that.

But Rei is best girl

I'm not sure if Visual Basic will have enough synergy to crack the firewall. He may need to use Java since it's better at multithreading and this will allow him to debug the WYSIWYG. Perhaps he should even ${verb} the ${noun}.

>${verb:ing} the ${noun}
>$current_year