Hit by ransomware?

We're here to fix that.

Use our free ransomware decryption tools to unlock your files without paying the ransom

[Mar, 22, 2016] - Version:

Nemucod decryptor

Nemucod is a JavaScript downloader malware that used to be used by TeslaCrypt for distributing TeslaCrypt binaries. Recent Nemucod versions dropped the TeslaCrypt payload in favour of its own ransomware implementation. The Nemucod ransomware encrypts the first 2048 bytes of a file using a 255 bytes XOR key. 

To use the decrypter you will require an encrypted file of at least 4096 bytes in size as well as its unencrypted version. To start the decrypter select both the encrypted and unencrypted file and drag and drop them onto the decrypter executable.