kupidon

  • so i woke up this morning to all of my movies and tv shows being encrypted with this virus...apparently it specifically attacks Nas OS


    never in a million years would i expect this on a linux system


    Anyone know how to remove?


    Thanks

    Mike

  • How do you know the virus is on and actually running on your NAS?


    Do you have shares enabled on your NAS being offered to a Windows machine?

    --
    Google is your friend and Bob's your uncle!


    OMV AMD64 7.x on headless Chenbro NR12000 1U 1x 8m Quad Core E3-1220 3.1GHz 32GB ECC RAM.

  • So the virus got onto a Windows machine that had write access to your shares?


    Removing the virus is one thing. Getting your data decrypted is another.


    Do you have any files named !KUPIDON_DECRYPT.TXT ? They have instructions in them.


    Good luck.

    --
    Google is your friend and Bob's your uncle!


    OMV AMD64 7.x on headless Chenbro NR12000 1U 1x 8m Quad Core E3-1220 3.1GHz 32GB ECC RAM.

    • Offizieller Beitrag

    Definitely not the fault of the NAS/Linux. No backups??

    omv 7.0.4-2 sandworm | 64 bit | 6.5 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.10 | compose 7.1.2 | k8s 7.0-6 | cputemp 7.0 | mergerfs 7.0.3


    omv-extras.org plugins source code and issue tracker - github


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • pegasuspc

    Hat das Label gelöst hinzugefügt.
  • Below is content of a !KUPIDON_DECRYPT.txt file (sanitized)


    All your files have been encrypted with Kupidon Virus.

    Your unique id: DB82849Axxxxxxxxxxxxxxxxxxxxxxxxxx

    As a commercial person you can buy decryption for 1200$ in Bitcoins.
    But before you pay, you can make sure that we can really decrypt any of your files.
    The encryption key and ID are unique to your computer, so you are guaranteed to be able to return your files.

    To do this:
    1) Download and install Tor Browser ( https://www.torproject.org/download/ )
    2) Open the http://oc3g3xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.onion/ web page in the Tor Browser and follow the instructions.

    --
    Google is your friend and Bob's your uncle!


    OMV AMD64 7.x on headless Chenbro NR12000 1U 1x 8m Quad Core E3-1220 3.1GHz 32GB ECC RAM.

  • Paying them any amount is not a guarantee that you will obtain the decryption key needed to unlock your files.

    --
    Google is your friend and Bob's your uncle!


    OMV AMD64 7.x on headless Chenbro NR12000 1U 1x 8m Quad Core E3-1220 3.1GHz 32GB ECC RAM.

    Einmal editiert, zuletzt von gderf ()

Jetzt mitmachen!

Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!