New Tool Could Liberate PCs Infected With WannaCry

It replicates the ransomware's encryption key, but it will only work if you haven't rebooted your computer since it became infected.
New Tool Could Liberate PCs Infected With WannaCry
Image credit: via PC Mag

Grow Your Business, Not Your Inbox

Stay informed and join our daily newsletter now!
News reporter
2 min read
This story originally appeared on PCMag

Have a computer infected by WannaCry ransomware? If you haven't touched it since the dreaded ransom notice popped up on the screen, there may be a way to free your captive files without paying.

The new fix, developed by French security researchers, only works if your computer hasn't been rebooted since becoming infected with WannaCry. It's called Wanakiwi, and it attempts to replicate WannaCry's encryption key by sniffing out prime numbers -- the building blocks of the widely used RSA encryption method -- that are stored in the ransomware's code. In theory, it's quite simple to use.

 

"You just need to download the tool and run it on the infected machine," security researcher Matthew Suiche wrote in a blog post on Thursday. "Default settings should work."

Wanakiwi is available on Github. Once you've downloaded it and clicked on the wanakiwi.exe executable file, it will automatically begin looking for the prime numbers. But in order for it to find the numbers, Suiche said, you have to "cross fingers that your prime numbers haven't been overwritten," which would happen if you tried to restart your computer at any time after it was infected.

The Wanakiwi tool has been tested to work with Windows XP and Windows 7, which means it should also work with the intervening versions of Windows, Suiche said. Windows 10 is not affected by WannaCry.

Of course, you may be just as concerned about downloading unknown software from Github as you are about WannaCry itself. While PCMag has not tested Wanakiwi because we don't have any computers infected with WannaCry, Europol announced in a tweet on Thursday that its cybercrime law enforcement division tested it and found that the tool could "recover data in some circumstances."

Meanwhile, if your computer hasn't been compromised by WannaCry, you've got little reason to fear a future infection, assuming you download and install a patch that Microsoft released in March to address the vulnerability that the ransomware targets.

More from Entrepreneur
Our Franchise Advisors will guide you through the entire franchising process, for FREE!
  1. Book a one-on-one session with a Franchise Advisor
  2. Take a survey about your needs & goals
  3. Find your ideal franchise
  4. Learn about that franchise
  5. Meet the franchisor
  6. Receive the best business resources
Entrepreneur Insider members enjoy exclusive access to business resources for just $5/mo:
  • Premium articles, videos, and webinars
  • An ad-free experience
  • A weekly newsletter
  • Bonus: A FREE 1-year Entrepreneur magazine subscription delivered directly to you
Make sure you’re covered for physical injuries or property damage at work by
  • Providing us with basic information about your business
  • Verifying details about your business with one of our specialists
  • Speaking with an agent who is specifically suited to insure your business

Latest on Entrepreneur