Go Back > Factoring Projects > Msieve

Thread Tools
Old 2016-01-14, 03:39   #111
EdH's Avatar
"Ed Hall"
Dec 2009
Adirondack Mtns

111568 Posts

Originally Posted by wombatman View Post
Very nice! Anything that can simplify the process is a good thing for a situation such as this.
I was kind of wondering if I should look into building a linux LiveCD with all the basic necessities, that one could load into the infected machine and boot up. I'm not sure I have the time and capability right now, but I might learn something if I tried...

(A long time ago I made such a LiveCD that ran Aliqueit and all its factoring programs. This should be similar.)
EdH is offline   Reply With Quote
Old 2016-01-14, 19:46   #112
Jan 2016

116 Posts
Smile I'd like if someone can help me

Hi all people, I'm infected with the same virus ransome .vvv

I read the fórum and I'm tried to follow all the steps....but I'm confused in some steps....

I'd grateful if something can help me...

Firts of all I downloaded all the tolos, Install Python 2.7.11 de 64 bits and install pycrypto, edcsa and bitcoin...

I copied an encrypted file .pdf to python27 directory

then....I put this command in Windows cmd with adminstrators privileges...

C:\>cd python27
Cannot decrypt ./EMIR FEBRERO.pdf.vvv, unknown key
Software has encountered the following unknown AES keys, please crack them first
using msieve:
E940898C15A74414327E592AF7D02B2D0C46A919E813A0 found in ./EMIR FEBRERO.pdf.vvv
Alternatively, you can crack the following Bitcoin key(s) using msieve, and use
them with TeslaDecoder:
525A643D2207F0814828391E108FABC9AE8C47E2A3B7C860 found in ./EMIR FEBRERO.pdf.vvv

this program found two keys, I use the first.... I don't know if I need to use the two keys...

next step I wrote the first key in
and I obtained this number in decimal


then I follow the steps and I went to and try to factorize it
I obtained this:

CF 152 (show) 3304913759...16<152> = 2^5 · 3^4 · 23 · 191 · 8161 · 40813 · 48187 · 68371 · 160343 · 1649567941...07<122>

then I don't know how I could write this using the yafu command or msieve command...

I would grateful if somethin can explain me how I must to write this number in the next step... or if someone step is wrong...

or what is the next step and how to do it...?

thanks to all for read this post....
Lycanus is offline   Reply With Quote
Old 2016-01-15, 03:43   #113
Basketry That Evening!
Dubslow's Avatar
"Bunslow the Bold"
Jun 2011
40<A<43 -89<O<-88

11100001101012 Posts

If you have downloaded yafu, then yafu "factor(16495679416408707845355090663075461330634110078151418507654533297838903004324462064530842543922772232914017984511074866607)" -v -threads 8" should do the trick. That number is the C122 from your posted key. Change the threads count from 8 to whatever is appropriate for your system. You may need to download the gnfs-lasieve sievers as well, it depends. Edit: You'd also need to download GMP-ECM for multithreaded ECM, that is highly recommended.

(Nice inline tag, Mike!)

Last fiddled with by Dubslow on 2016-01-15 at 03:46
Dubslow is offline   Reply With Quote
Old 2016-01-15, 03:49   #114
Basketry That Evening!
Dubslow's Avatar
"Bunslow the Bold"
Jun 2011
40<A<43 -89<O<-88

3·29·83 Posts

Actually, I gave it a crack since I use all this software on a regular basis; it took around 4-5 minutes for yafu to completely factor the number, you got lucky. The full factors are posted to the FDB:

Edit: For shiggles I took a crack at the other key you posted; it was even easier, took ~5-10 seconds to fully factor it:

Last fiddled with by Dubslow on 2016-01-15 at 03:51
Dubslow is offline   Reply With Quote
Old 2016-01-22, 00:10   #115
EdH's Avatar
"Ed Hall"
Dec 2009
Adirondack Mtns

2·7·337 Posts
Default Is there interest in a Live-DVD to combat TeslaCrypt?

I have been playing around to see what I can and can't do with a live linux DVD against an infected Windows system. I've found lots of "challenges," but this approach may be workable.

At this point, I am pursuing this mostly as an educational tool, but would like to know if there is perceived to be any practical interest. I plan on following this project for a while, but if there is no interest, I may not proceed past any real sticking points.

My basic scheme presently, is to build a Live-DVD with Xubuntu OS which works in the following manner:

1.  Boot infected machine from DVD (Xubuntu)
2.  Follow script file throughout the procedure, which
    a. creates a temporary drive under C:\Users, possibly called teslatemp
    b. finds a .pdf.vvv file as an example infection and copies that file into teslatemp
    c. runs TeslaCrypt to extract pre-key composites
    d. translates composite(s) from hexadecimal to decimal
    e. checks composite(s) against by treating it as an aliquot sequence
        (1) if factored, returns all factors and branches to 3, below
        (2) if unfactored proceeds with f, below
    f. uses installed Aliqueit/ecm/msieve/ggnfs/+ packages to factor composite(s)
       (working files and relations would be stored in C:/Users/teslatemp)
    g. submits factors to for retention
3.  presents factors for use by TeslaCrack

** It is also possible, I will develop this into a GUI application, but that might be a ways off **
Beyond the obvious (always present) possibility of trashing the Windows system, is there anything that I can't stumble into a way of doing, due to my ignorance of an in-built block?

Thank you for any and all comments, pro or con...
EdH is offline   Reply With Quote
Old 2016-01-22, 07:39   #116
jux's Avatar
Aug 2015

2×33 Posts

Well I cannot help you with your scheme, but it seems to me that the activity around TeslaCrypt has died down a bit, so there may not be that much demand. Ironically, some people may see this as even more complicated than running factoring programs manually ("Linux DVD? That sounds scary!") But for educational purposes then there is really no problem.

Last fiddled with by jux on 2016-01-22 at 07:40
jux is offline   Reply With Quote
Old 2016-05-20, 11:41   #117
xilman's Avatar
May 2003
Down not across

3×13×293 Posts

Master key released
A shame in some ways. TeslaCrypt introduced a lot of new people to the delights of integer factorization.

Last fiddled with by xilman on 2016-05-20 at 11:42
xilman is online now   Reply With Quote

Thread Tools

Similar Threads
Thread Thread Starter Forum Replies Last Post
Using msieve with c burrobert Msieve 9 2012-10-26 22:46
Yes: Tales from Typographic Oceans xilman Lounge 79 2012-05-26 23:53
msieve help em99010pepe Msieve 23 2009-09-27 16:13
95% sure I have a virus, please help jasong Hardware 8 2006-11-19 22:57
virus hardware damage? TTn Hardware 18 2006-11-04 09:41

All times are UTC. The time now is 02:07.

Tue Aug 16 02:07:55 UTC 2022 up 39 days, 20:55, 1 user, load averages: 1.42, 1.50, 1.38

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.

This forum has received and complied with 0 (zero) government requests for information.

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.
A copy of the license is included in the FAQ.

≠ ± ∓ ÷ × · − √ ‰ ⊗ ⊕ ⊖ ⊘ ⊙ ≤ ≥ ≦ ≧ ≨ ≩ ≺ ≻ ≼ ≽ ⊏ ⊐ ⊑ ⊒ ² ³ °
∠ ∟ ° ≅ ~ ‖ ⟂ ⫛
≡ ≜ ≈ ∝ ∞ ≪ ≫ ⌊⌋ ⌈⌉ ∘ ∏ ∐ ∑ ∧ ∨ ∩ ∪ ⨀ ⊕ ⊗ 𝖕 𝖖 𝖗 ⊲ ⊳
∅ ∖ ∁ ↦ ↣ ∩ ∪ ⊆ ⊂ ⊄ ⊊ ⊇ ⊃ ⊅ ⊋ ⊖ ∈ ∉ ∋ ∌ ℕ ℤ ℚ ℝ ℂ ℵ ℶ ℷ ℸ 𝓟
¬ ∨ ∧ ⊕ → ← ⇒ ⇐ ⇔ ∀ ∃ ∄ ∴ ∵ ⊤ ⊥ ⊢ ⊨ ⫤ ⊣ … ⋯ ⋮ ⋰ ⋱
∫ ∬ ∭ ∮ ∯ ∰ ∇ ∆ δ ∂ ℱ ℒ ℓ
𝛢𝛼 𝛣𝛽 𝛤𝛾 𝛥𝛿 𝛦𝜀𝜖 𝛧𝜁 𝛨𝜂 𝛩𝜃𝜗 𝛪𝜄 𝛫𝜅 𝛬𝜆 𝛭𝜇 𝛮𝜈 𝛯𝜉 𝛰𝜊 𝛱𝜋 𝛲𝜌 𝛴𝜎𝜍 𝛵𝜏 𝛶𝜐 𝛷𝜙𝜑 𝛸𝜒 𝛹𝜓 𝛺𝜔