Victims can now recover their files for free

Jul 22, 2016 13:18 GMT  ·  By

Another one bites the dust, and this time, it's the ransomware variant called ODCODC, for which security researcher BloodyDolly has created a decrypter to help users recover their files for free, without paying the ransom.

ODCODC is a ransomware family that was first seen at the end of May and had a limited distribution, with a much smaller impact when compared to ransomware threats such as CryptXXX, Cerber, or Locky.

Nevertheless, users were infected, and after two months of tinkering and looking at ODCODC's codebase, researchers created a decrypter that managed to go around ODCODC's RSA-2048 encryption and recover the victims' files.

Affected users can download the decrypter from Bleeping Computer's forum. Usage instructions are provided with the download package inside the README.txt file if you need any help, but users can also ask for help on the forum topic itself.

As with most decrypters these days, users are going to need a pair of the same file in its encrypted and unencrypted form.

As for a technical analysis of this ransomware, there's one from security researcher Nyxbone, but you'll need Google Translate because it's in Spanish.

A quick glance at the write-up shows that ODCODC requires a payment of around $500 in Bitcoin. Payment details are provided after contacting the ransomware's authors via email, and some users have paid to recover their files.

ODCODC ransomware decrypter
ODCODC ransomware decrypter

Photo Gallery (2 Images)

ODCODC ransomware decrypted
ODCODC ransomware decrypter
Open gallery