Security News > 2022 > February > Ransomware dev releases Egregor, Maze master decryption keys

Ransomware dev releases Egregor, Maze master decryption keys
2022-02-09 15:26

The master decryption keys for the Maze, Egregor, and Sekhmet ransomware operations were released last night on the BleepingComputer forums by the alleged malware developer.

The Maze ransomware began operating in May 2019 and quickly rose to fame as they were responsible for the use of data theft and double-extortion tactics now used by many ransomware operations.

The post includes a download link for a 7zip file with four archives containing the Maze, Egregor, and Sekhmet decryption keys, and the source code for a 'M0yv' malware used by the ransomware gang.

Each of these archives contains the public master encryption key and the private master decryption key associated with a specific "Advert", or affiliate of the ransomware operation.

Maze: 9 master decryption keys for the original malware that targeted non-corporate users.

Emsisoft's Michael Gillespie has reviewed the decryption keys and confirmed to BleepingComputer that they are legitimate and can be used to decrypt files encrypted by the three ransomware families.


News URL

https://www.bleepingcomputer.com/news/security/ransomware-dev-releases-egregor-maze-master-decryption-keys/