i found this site offering help, not sure if it will help?:
Since I have a one copy of that drive, I am thinking about buying hardware disk duplicator before attempting to do a recovery, is it good idea?
My computer was inflicted with this virus. I see every of the file has been encrypted and its name changed to something
It is huge mess and I dont have much needed data on that (I store everything on NAS at home and gladly fuckers has not been able to touch it) but there is no HYPERV HDD file on which I stored 1-2 years of project involving linux kernel development. I'd rather recover it.
Quick google search shows some sites offering help and some offering wipe-a-new but I am not sure which one is reliable. Some site points that the perpetrators promise to help is a hoax. Another site says, remedy is not available yet. Currently disk is in cold storage.
Any solution available? Thanks!