A user named “Topleak” has leaked the master decryption for three major ransomware operations (Maze, Egregor, and Sekhmet) on BleepingComputer forums.
The post includes a download link for a 7zip file with four archives containing the Maze, Egregor and Sekhmet decryption keys. It also contains the source code for an ‘M0yv’ malware used by the gang.
Each of the four archives contains both the public master encryption key and the private master decryption key. This is associated with a specific “advert” or affiliate of the gang.
In total, the archives have 9 Maze master decryption keys for the original malware, which is aimed at non-corporate users, 30 Maze master decryption keys, 19 Egregor master decryption keys and 1 Sekhmet master decryption key.
While claiming to be the developer for the three operations, the user behind the leak stated that the action was intentional, and further stated that it had nothing to do with law enforcement against the arrest of attackers.
For more information, read the original story in BleepingComputer.
