| CARVIEW |
Contact Cisco Talos Incident Response
For reputation or categorization inquiries, visit the Talos Support site. For emergency DDoS mitigation assistance, please contact the Cisco Secure DDoS Protection Team.
PyLocky Decryptor
This PyLocky decryptor tool is intended to restore the computer files to those victims affected by the ransomware PyLocky.
The PyLocky ransomware leverages the usage of a Python script to encrypt all the files of a victim computer with a DES3 cipher and runtime-generated encryption keys that are sent towards the Command and Control server, allowing the bad actors to provide a way to restore the files to the victims that have paid the ransom. This ransomware encrypts a wide range of file types such as photos, videos, documents, music and executable files.