Ifx2g-how-to-decrypt.txt - Ransomware Identification

Hi All

Anyone know a tool to help un-encrypt files locked with extension ifx2g ?
ANd file in directory "ifx2g-HOW-TO-DECRYPT.txt"

Regards
Fluff

 

Unfortunately you would be very lucky to find one!

As with most modern Ransomware, its my guess that the encryption process generates an RSA-1024 pair per run and encrypts the private key with a hard-coded RSA-2048 public key.
Without the master private RSA key that can be used to decrypt your files, decryption is impossible.

My advice would be to submit (upload) samples of encrypted files, ransom notes and any contact email addresses or hyperlinks provided by the cyber-criminals to ID Ransomware for assistance with Identification and confirmation of the infection.

Your best bet old mate would be to restore from a backup or restore point (if you have one), try some file recovery software, or backup and save the encrypted data, then wait for a possible solution at a later time.

I would ignore all Google searches which provide links to bogus and untrustworthy removal/decryption guides.
They just want your money for doing squat.

This is why all the Majorgeeks here continue to advise every member to make backups of their data and store it on an external drive, offline.
Many take no notice until its too late.......

Sorry dude, but you've been fluffed

 

We need to know the name of the ransomware using that extension.
My searches have turned up nothing so far.

Witty.

 

Thanks for reply. I've submitted examples to ID Ransomware, see if anything comes of it. Looks like it got in through an old server i setup for testing dev ops solutions, Jenkins/Jira web server had flaw i think.

No real loss, except one drive had some Family photos on its a shame to lose. Nothing of any physical value.

Ive def been F.......d

 

Hold tight....there is still hope!
Keep your encrypted files on a USB stick if you decide to format, and let us know here what comes back from ID Ransomware.

 

Several security and maleware related sites are always coming up with de-crypts for various crypto schemes. If data is important a new drive and media creation tool could allow to save the infected disk until a de-crypt becomes available.

 

Not many know about the range of McAfee Free Tools (Anti-Malware & Encryption) for security industry researchers!

In particular Mr2, which may or may not be pertinent for the OP.

Securing Tomorrow may also be helpful reading.