Concerning with the massive WannaCry ransomware campaign notified in the latest bulletins, CCN-CERT announces the development of the tool "CCN-CERT NoMoreCry Tool".
This tool is available to all organisations that need to use it. It creates a mutex (mutual exclusion algorithm) on the computer that prevents the execution of the malicious code WannaCry 2.0. It is important to note that this tool is Not intended to clean compromised machines.
CCN-CERT indicates that the tool should be run after each restart. This process can be automated by modifying the Windows registry or through the implementation of the proper policies in the domain
This tool works on all versions of Windows.
CCN-CERT NoMoreCry Tool is located in CCN-CERT's cloud, LORETO. In this location there is also available a complementary Script that prevents the execution of the malware on Windows computers in English and Spanish.
Further information on:
CCN-CERT NoMoreCry and script
CCN-CERT Press Release
CCN-CERT IA-03/17 Medidas Seguridad ransomware
CCN-CERT BP-04/16 Buenas Prácticas frente al ransomware