// Context
About This Negotiation
This transcript documents a NoEscape ransomware negotiation with a redacted victim organisation.
The negotiation consisted of 4 messages exchanged over Unknown.
The initial ransom demand was $80,000. The final outcome is not confirmed in the transcript.
// Primary Source
Full Transcript — Verbatim
Reproduced from Casualtek's Ransomchats archive. URLs have been redacted.
Victim names are shown only where the breach was publicly reported in mainstream media. Any organisation wishing their name redacted can contact us at
enquiries@binary-response.com — we will act promptly.
[NoEscape] — 18:21 12.09.2023 — Message 1/4
Hello sir.
Can i help you?
[Victim] — 23:16 18.09.2023 — Message 2/4
Hi, yes please
[NoEscape] — 00:08 19.09.2023 — Message 3/4
Hello.
Your company's servers/computers have been encrypted and compromised by NoEscape ransomware.
To get our special software to recover all your files, you need to send us the amount in Bitcoin shown on your page. That's roughly the equivalent of $80,000
You should know that only we can recover your files and no one else. Only we have the software that can do this. If you try to restore it yourself or someone else tries to do it, your files will be permanently deleted.
[NoEscape] — 00:10 19.09.2023 — Message 4/4
In order to check that we can actually recover your files, you can use the test decryptor on your page. You need to upload 1 image up to 5MB in size.