Intel Security, working collaboratively with another security vendor and global law enforcement, took down the command and control servers operating the WildFire ransomware. As part of that effort, we developed a decryption tool capable of unlocking user files, applications, databases, applets, and other objects infected by the WildFire ransomware. This tool is available free as a part of the "No More Ransom" project, an initiative to share ransomware threat intelligence, coordinate malware campaign takedowns, educate users on how to protect themselves, and provide tools to unlock infected systems.
The WildFire ransomware decryption tool is provided as-is and subject to Intel Security's End User License Agreement. Decryption keys may not be available in all instances.