GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → SpiderLabs → BlackByteDecryptor

SpiderLabs / BlackByteDecryptor

Licence: Apache-2.0 license
No description, website, or topics provided.

Programming Languages

C#
18002 projects

BlackByteDecryptor

This is a decryptor for the ransomware BlackByte. The key is stored in a file called forest.png, which was downloaded from http[:]//45.9.148.114/forest.png

Requirements

This requires .NET core 3.1 runtime which you can download from here: https://dotnet.microsoft.com/download/dotnet/3.1

Decrypting an encrypted file

> BlackByteDecryptor forest.png spider.png.blackbyte

Decrypting a directory

> BlackByteDecryptor forest.png c:\temp

This will decrypt files in the c:\temp directory, or to recursively decrypt a directory:

> BlackByteDecryptor forest.png c:\temp -r

Pre-built binary

We suggest building the source yourself, but if you prefer a pre-built binary, you can download it here. We have also provided a sample encrypted file called spider.png.blackbyte.

Write up and analysis

BlackByte Ransomware – Pt. 1 In-depth Analysis

BlackByte Ransomware – Pt 2. Code Obfuscation Analysis

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].