Bitdefender, a cybersecurity company, has released a free decryptor for the MortalKombat ransomware that allows victims to recover their files without having to pay the ransom. This ransomware strain appeared in January 2023 and was mainly targeting systems in the United States, according to Cisco Talos.
MortalKombat distributors distribute malicious ZIP attachments with BAT loader scripts via random emails to users. Once the script is launched, it downloads the ransomware binary and Laplas Clipper and executes them on the system. The decryptor is a standalone executable and doesn’t require any installation on infected devices. It scans the entire filesystem to locate infected files or a specific location that holds backed-up encrypted data. The decryptor also has an option to create backups of encrypted files, replace previously decrypted files, and run from the command line. However, it cannot locate and uproot Laplas files, which is a separate malware infection that can be detected using general-purpose antivirus software.
To reduce the risk of ransomware and malware infections, it’s important to avoid downloading files from obscure sources or attachments from unsolicited emails.