Cybersecurity firm Emsisoft has released a free decryption tool to help Diavol ransomware victims recover their files without paying a ransom. Diavol’s encryption procedure employs user-mode Asynchronous Procedure Calls (APCs) with an asymmetric encryption algorithm. The tool will keep the files encrypted in the attack as a failsafe if the decrypted files are not identical to the original documents. It comes with no obfuscation as it doesn’t use packing or anti-disassembly tricks, but it still hinders analysis efforts by storing its main routines within bitmap images.”]

