How to recover files encrypted by Mole02 ransomware?

Question

Issue: How to recover files encrypted by Mole02 ransomware?

Hello, all. A couple of hours ago I’ve accidentally agreed with an installation of a doubtful exe file, which then appeared to be an executable of the Mole02 ransomware. Now all my files are encrypted and have a .MOLE02 file extension. Although I have loads of photos and documents that I don’t want to lose, I’m not planning to pay the ransom… Is there a way to decrypt at least a part of the files?

Solved Answer

Mole02 is a ransomware virus, which is distributed via spam emails, fake downloads, exploit kits, and other typical means that malware developers exploit. It is the newest member of the CryptoMix family, which currently stands ahead of the Revenge and Mole ransomware viruses. The virus is executed when the PC’s owner clicks on the Mole02.exe file. Then the virus roots deeply into the operating system by installing malicious files, modifying Registry entries, corrupts legitimate system’s processes, and initiates other significant changes. Once the infiltration procedure is finished, the Mole02 virus encrypts personal files using RSA-2048 and AES-128 encryption algorithm and drops a ransom note in the _HELP_INSTRUCTION.TXT file. Consequently, all personal files get the .MOLE02 file extension, which is why the PC’s owner cannot open any of them.

The developers of the Mole02 virus prompt victims to pay the ransom in Bitcoins using Tor browser. Unfortunately, the required sum of money is not currently known because the ransomware is still in the development phase. Unfortunately, even if that sum is not too big for you, we do not recommend paying the ransom because there’s no guarantee that hackers will provide a decryption key or at least respond to you.

Luckily, there are at least two ways to recover files encrypted by Mole02 ransomware. First of all, you can always use file backups if, of course, you have created them some time ago. If, however, you haven’t prepared backups, try using Mole02 CryptoMix decryptor. If, however, the tool fails to decrypt your files, try using Volume Shadow Copies or run a scan with Data Recovery Pro.

IMPORTANT: before trying any method to recover files encrypted by Mole02, don’t forget to remove the ransomware completely. For this purpose, boot your PC into Safe Mode and run a full scan with a professional anti-malware. You may use FortectMac Washing Machine X9.

Method 1. Use file backups

If you have created backups for the most important files using cloud storage or an external drive, make sure to remove the Mole02 virus and then recover the files using your backups.

Method 2. Use the Mole02 CryptoMix decryptor

1. Download the Mole02 CryptoMix decryptor by clicking on this link.
2. Extract it using the password falsepositive.
3. Now execute the utility and let it run.
4. When the scan process is finished, the decryptor should automatically close and all the encrypted files should now have an encrypted copy.

Method 3. Use Data Recovery Pro

1. Install Data Recovery Pro.
2. Launch it and scan the system to detect files that can be recovered.
3. Restore them.

Recover files and other system components automatically

To recover your files and other system components, you can use free guides by ugetfix.com experts. However, if you feel that you are not experienced enough to implement the whole recovery process yourself, we recommend using recovery solutions listed below. We have tested each of these programs and their effectiveness for you, so all you need to do is to let these tools do all the work.