16 January 2023

Researchers release free decryptor for BianLian ransomware


Researchers release free decryptor for BianLian ransomware

Anti-virus maker Avast has released a free decryptor for victims of the BianLian ransomwareto help them recover their files without paying a ransom.

The BianLian ransomware (not to be confused with the same-name Android malware) first emerged in August 2022, and is known to target manufacturing, education, healthcare, professional services, energy, banking, financial services, and insurance (BFSI), and the entertainment industry.

Avast notes that the decryptor works only for files encrypted by a known variant of the BianLian ransomware. For new victims, it may be necessary to find the ransomware binary on the hard drive. However, because the ransomware deletes itself after encryption, it may be difficult to do so.

A step-by-step instruction on how to use the decryptor along with IoCs (Indicators of Compromise) related to the threat as available in the company’s blog post.

Back to the list

Latest Posts

Russia-linked Nodaria APT adds new Graphiron infostealer to its toolkit

Russia-linked Nodaria APT adds new Graphiron infostealer to its toolkit

The new infostealer was observed in attacks targeting Ukrainian organizations.
8 February 2023
CISA releases tool to recover encrypted VMware ESXi servers

CISA releases tool to recover encrypted VMware ESXi servers

According to CISA’s list of bitcoin addresses, over 2,800 ESXi servers have been encrypted to date.
8 February 2023
Threat actors target Ukrainian government agencies with Remcos spyware

Threat actors target Ukrainian government agencies with Remcos spyware

The attack involves a phishing email ostensibly sent by Ukrtelecom, a major Ukrainian internet service provider.
8 February 2023