NoMoreCry Tool, CCN-CERT's tool to prevent the execution of the ransomware WannaCry

Concerning with the massive WannaCry ransomware campaign notified in the latest bulletins, CCN-CERT announces the development of the tool "CCN-CERT NoMoreCry Tool".



This tool is available to all organisations that need to use it. It creates a mutex (mutual exclusion algorithm) on the computer that prevents the execution of the malicious code WannaCry 2.0. It is important to note that this tool is Not intended to clean compromised machines.



CCN-CERT indicates that the tool should be run after each restart. This process can be automated by modifying the Windows registry or through the implementation of the proper policies in the domain



This tool works on all versions of Windows.



CCN-CERT NoMoreCry Tool is located in CCN-CERT's cloud, LORETO. In this location there is also available a complementary Script that prevents the execution of the malware on Windows computers in English and Spanish.

Further information on:

CCN-CERT NoMoreCry and script



CCN-CERT Press Release



CCN-CERT IA-03/17 Medidas Seguridad ransomware



CCN-CERT BP-04/16 Buenas Prácticas frente al ransomware