The Malware experts at SentinelOne found a flaw in the implementation of the EvilQuest Mac ransomware and offers a free decryptor.
https://github.com/Sentinel-One/foss/tree/master/s1-evilquest-decryptor
They found that the ransomware uses a custom symmetric encryption based on RC2, and failed to remove the function to do the decryption job.
With this tool any Mac user who was affected can decrypt the files.
https://github.com/Sentinel-One/foss/tree/master/s1-evilquest-decryptor
They found that the ransomware uses a custom symmetric encryption based on RC2, and failed to remove the function to do the decryption job.
With this tool any Mac user who was affected can decrypt the files.
