D2W_SaveFolder

---

D2W_SaveFolder(SF) - This program is a ransomware managed by WannaCry. With it, you can encrypt the contents of any folder using hybrid asynchronous encryption. Encryption takes place according to the principle of a nesting doll: first, the file is encrypted with a random set of bytes (session key), and then encrypted with a public key.

Instructions for encrypting files

• Launch SF by selecting the appropriate icon in the Dock

• Generate encryption keys (public and private)

  • Go to the tab Key Generator

  • Select a folder for storing keys by pressing the Browse button

  • Select key length (recommended 4096 bits)

  • Generate

A message will appear in the information window about the successful generation of keys

• Encrypt the required folder with files

  • Select a folder to encrypt by pressing Browse

  • Select PUBLIC (reciever.pem) key to encrypt

  • Start Encryption

A message will appear in the information window about the successful encryption of files

*Note: At this stage your files are encrypted, no one will be able to open your encrypted files. You can keep the public one (reciever.pem) on your PC, it is only needed for encryption.

Instructions for decrypting files

• Go to the tab Decryption

• Select a folder for decryption by pressing Browse

• Select PRIVATE (private.pem) decryption key

• Decrypt selected folder

A message will appear in the information window about the successful decryption of files

*ATTENTION!! We advise you to keep the private (private.pem) key away from the main machine, it is needed to decrypt files, if you lose it, you will lose all encrypted data.