Latest News Latest News

New OpenSMTPD RCE Flaw Affects Linux and OpenBSD Email Servers

OpenSMTPD has been found vulnerable to yet another critical vulnerability that could allow remote attackers to take complete control over email servers running BSD or Linux operating systems.

Read More...

Emotet Malware Now Hacks Nearby Wi-Fi Networks to Infect New Victims

Emotet, the notorious trojan behind a number of botnet-driven spam campaigns and ransomware attacks, has found a new attack vector: using already infected devices to identify new victims that are connected to nearby Wi-Fi networks.

Read More...

Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root

Joe Vennix of Apple security has found another significant vulnerability in sudo utility that under a specific configuration could allow low privileged users or malicious programs to execute arbitrary commands with administrative ('root') privileges on Linux or macOS systems.

Read More...

Update Windows 10 Immediately to Patch a Flaw Discovered by the NSA

After Adobe today releases its first Patch Tuesday updates for 2020, Microsoft has now also published its January security advisories warning billions of users of 49 new vulnerabilities in its various products.

Read More...

Adobe Releases First 2020 Patch Tuesday Software Updates

Adobe today released software updates to patch a total of 9 new security vulnerabilities in two of its widely used applications, Adobe Experience Manager and Adobe Illustrator. It's the first...

Read More...

Drupal Warns Web Admins to Update CMS Sites to Patch a Critical Flaw

Drupal development team yesterday released important security updates for its widely used open-source content management software that addresses a critical and three "moderately critical" vulnerabilities in its core system.

Read More...

Latest Microsoft Update Patches New Windows 0-Day Under Active Attack

With its latest and last Patch Tuesday for 2019, Microsoft is warning billions of its users of a new Windows zero-day vulnerability that attackers are actively exploiting in the wild in combination with a Chrome exploit to take remote control over vulnerable computers.

Read More...

Snatch Ransomware Reboots Windows in Safe Mode to Bypass Antivirus

Cybersecurity researchers have spotted a new variant of the Snatch ransomware that first reboots infected Windows computers into Safe Mode and only then encrypts victims' files to avoid antivirus detection.

Read More...

Avast and AVG Browser Extensions Spying On Chrome and Firefox Users

If your Firefox or Chrome browser has any of the below-listed four extensions offered by Avast and its subsidiary AVG installed, you should disable or remove them as soon as possible; Avast Online Security, AVG Online Security,Avast SafePrice and AVG SafePrice.

Read More...

Malicious Android SDKs Caught Accessing Facebook and Twitter Users Data

Two third-party software development kits integrated by over hundreds of thousands of Android apps have been caught holding unauthorized access to users' data associated with their connected social media accounts.

Read More...

Contact Us Contact Us

Free Call[OH]: 933

Phone Number: +251-900-89-64-48

E-mail: ethiocert@insa.gov.et

P.O.Box: 124498

Download PGP Keys


Report an Incident

Tool Tool

Back

Mabezat Recovery Tool

Mabezat Recovery Tool

  • Virus Name "Mabezat.b"
  • Virus generation B
  • Infection type – files infection and encryption
  • Mebezat.b virus attack details
·    Mebazat encrypts files by adding 0x10 to each byte of the file (*.TXT, *.BAS, *.C, *.MDB, *.ZIP, *.RAR *.DOC, *.XLS, *.CPP, *.H, *.PAS, *.ASP, *.PHP, *.PPT, *.HTM, *.RTF, *.MDF, ,*.PSD, *.ASPX, *.ASPX.CS, *.HTML, *.PDF, *.HLP)
·    It encrypts files that are created staring from 2012/10/16
·    The encryption lasts until it reaches its size (around 79360 byte)
·    The encryption is symmetric
·    Appends "TAZEBAMA.3515" string at the end of file

Recovery details 

  • The tool recovers different files encrypted by Mabezat virus. It has two options for recovering files
    • Single file recovery option
    • Multiple files recovery option (provided in a specific directory)
  • It recovers files and then stores them in a new directory called "Recovered" by the same filename. The "Recovered" directory is created for each new directories where corrupted files are present
  • To use the single file recovery option, first check the "for single file recovery click here" option and select the file to recover.
  • Minimum requirements
    • XP service pack2 and above
    • For service pack 1 users upgrade to service pack 2 or above
    • Download the tool here

 Mabezat Recovery Tool Screenshots


Values Values

  • Trustworthiness
  • Innovation
  • Scientific
  • Democracy
  • Synergy
  • Saving