Last Updated: 2015-10-31 09:49:40 UTC
by Didier Stevens (Version: 1)
A couple of people expressed interest in the ransomed files I recovered in my last diary entry.
I can not release those files, but I did create a similar file: ransomed-file.bin.
If you want to try to recover the picture in ransomed-file.bin, be aware that I released a new version of my byte-stats tool: byte-stats-V0_0_2.zip. It can find simple sequences and contains a man page now: run byte-stats.py -m to display the man page.
And if you manage to recover the jpeg file: let me know what you think this picture is ;-)