Locked Mock Ransomware

dEEpEst · 2019-09-01T07:52:12+0000

"# mock-ransomware" Release\ransomware.exe Go to test folder, notice the permission changes, change them back to see the encrypted text Delete copied malware inside of \\Users\\<name>\\ransomwaredirectory open up regedit to also delete persistent keys reg DELETE HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v ransomware_pwn /f The operation completed successfully. reg QUERY HKCU\Software\Microsoft\Windows\CurrentVersion\Run to verify To view the driver installed C:\> sc query MyCustomBeep SERVICE_NAME: MyCustomBeep TYPE : 1 KERNEL_DRIVER STATE : 1 STOPPED WIN32_EXIT_CODE : 1077 (0x435) SERVICE_EXIT_CODE : 0 (0x0) CHECKPOINT : 0x0 WAIT_HINT : This is the hidden content, please Sign In or Sign Up

By dEEpEst
September 1, 2019 in C/C++

Followers 0

Start new topic

Recommended Posts

dEEpEst

Posted September 1, 2019

- Share

Posted September 1, 2019

"# mock-ransomware"

Release\ransomware.exe
Go to test folder, notice the permission changes, change them back to see the encrypted text
Delete copied malware inside of \\Users\\<name>\\ransomwaredirectory
open up regedit to also delete persistent keys

reg DELETE HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v ransomware_pwn /f The operation completed successfully.
reg QUERY HKCU\Software\Microsoft\Windows\CurrentVersion\Run
- to verify

To view the driver installed

C:\> sc query MyCustomBeep

SERVICE_NAME: MyCustomBeep
        TYPE               : 1  KERNEL_DRIVER
        STATE              : 1  STOPPED
        WIN32_EXIT_CODE    : 1077  (0x435)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          :

This is the hidden content, please

Link to comment

Share on other sites

This topic is now closed to further replies.

Followers 0

Go to topic listing

Similar Content
- Peyta Ransomware (Source Code)
  
  By dEEpEst, March 3, 2023
  - code)
  - (source
  - (and 2 more)
    
    Tagged with:
    
    code)
    
    (source
    
    ransomware
    
    peyta
  - 0 replies
  - 267 views
- Comparative Study of Fileless Ransomware
  
  By ~~Nd0714~~ , April 11, 2023
  - comparative
  - ransomware
  - (and 2 more)
    
    Tagged with:
    
    comparative
    
    ransomware
    
    fileless
    
    study
  - 0 replies
  - 159 views
- Windows Ransomware Detection and Protection
  
  By itsMe, March 16, 2023
  - windows
  - ransomware
  - (and 3 more)
    
    Tagged with:
    
    windows
    
    ransomware
    
    detection
    
    and
    
    protection
  - 0 replies
  - 180 views
- Ransomware Simple - Python
  
  By dEEpEst, February 9, 2023
  - ransomware
  - simple
  - (and 1 more)
    
    Tagged with:
    
    ransomware
    
    simple
    
    python
  - 0 replies
  - 191 views
- A Ransomware and Ransomware Builder for Windows written purely in Python
  
  By dEEpEst, February 8, 2023
  - purely
  - written
  - (and 6 more)
    
    Tagged with:
    
    purely
    
    written
    
    windows
    
    for
    
    builder
    
    and
    
    ransomware
    
    python
  - 0 replies
  - 155 views

Sign In

Locked Mock Ransomware

Recommended Posts

dEEpEst

Link to comment

Share on other sites

Similar Content

Peyta Ransomware (Source Code)

Comparative Study of Fileless Ransomware

Windows Ransomware Detection and Protection

Ransomware Simple - Python

A Ransomware and Ransomware Builder for Windows written purely in Python

Browse

Activity

Store

Important Information