Security researchers reversed the encryption routine employed by L4NC34 ransomware by decrypting a file without paying the ransom.
Sucuri Security first encountered L4NC34 ransomware when it began investigating an attack in which a malicious actor encrypted all website files and appended “.crypt” to their file names.
The security firm dug a bit deeper and uncovered something interesting. As it explained in its research: