en
Get a Demo
Platform
Why SentinelOne?
Services
Partners
Resources
About
en
Get a Demo
Back to Resources

EvilQuest Ransomware Decryptor in Action

Video
EvilQuest Ransomware Decryptor in Action
A new macOS ransomware threat uses a custom file encryption routine The routine appears to be partly based on RC2 rather than public key encryption SentinelLabs has released a public decryptor for use with “EvilQuest” encrypted files To learn more about EvilQuest/ThiefQuest malware, read our blog: https://www.sentinelone.com/blog/evilquest-a-new-macos-malware-rolls-ransomware-spyware-and-data-theft-into-one/ To read how we reversed the ransomware: https://labs.sentinelone.com/breaking-evilquest-reversing-a-custom-macos-ransomware-file-encryption-routine/
Watch Now
Related Resources
Video
Introducing Our New AI Security Posture Management
Video
Security Platforms are “Definitely More Than a Passing Trend”
Video
Chris Krebs: “You Think You’re in IT…It’s So Much More Than That.”
Video
Steve Wozniak, Purple AI, and Hyperautomation: Some of Our Top OneCon Moments

Experience the World’s Most Advanced Cybersecurity Platform

See how our intelligent, autonomous cybersecurity platform harnesses the power of data and AI to protect your organization now and into the future.

Request a Demo