Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 12715

DeathRansom - A ransomware developed in python, with bypass technics

by MiNdFuCkErY_1337skid - 06 May, 2020 - 06:11 PM
This post is by a banned member (Trapkinggg) - Unhide
Trapkinggg  
Registered
15
Posts
0
Threads
3 Years of service
#49
03 May, 2021 - 03:15 AM
thanks for the post, very interested in trying this out
This post is by a banned member (xF0r368) - Unhide
xF0r368  
Registered
13
Posts
0
Threads
3 Years of service
#50
06 May, 2021 - 01:25 AM
thx for use
 
(06 May, 2020 - 06:11 PM)MiNdFuCkErY_1337skid Wrote: Show More
First, the script checks if it's in a sandbox, debugger, vm, etc, and try bypass it.
It then encrypts all files starting with the defined directory on the line 60 in deathransom.py.
Then, downloads the ransom request script, disable cmd, taskmanager and the registry tools. And starts the counter to delete the files.

[Image: 68747470733a2f2f696d672e796f75747562652e...742e6a7067]
This post is by a banned member (SiaSmith98) - Unhide
This post is by a banned member (djakeo) - Unhide
djakeo  
Registered
4
Posts
0
Threads
3 Years of service
#52
29 May, 2021 - 01:39 PM
(06 May, 2020 - 06:11 PM)MiNdFuCkErY_1337skid Wrote: Show More
tFirst, the script checks if it's in a sandbox, debugger, vm, etc, and try bypass it.
It then encrypts all files starting with the defined directory on the line 60 in deathransom.py.
Then, downloads the ransom request script, disable cmd, taskmanager and the registry tools. And starts the counter to delete the files.

[Image: 68747470733a2f2f696d672e796f75747562652e...742e6a7067]



nive tu
This post is by a banned member (Endarion) - Unhide
Endarion  
Registered
31
Posts
0
Threads
3 Years of service
#53
01 July, 2021 - 02:42 AM
Thankss
This post is by a banned member (ntcaglpe156) - Unhide
ntcaglpe156  
Registered
23
Posts
0
Threads
3 Years of service
#54
03 July, 2021 - 11:03 AM
(06 May, 2020 - 06:11 PM)MiNdFuCkErY_1337skid Wrote: Show More
First, the script checks if it's in a sandbox, debugger, vm, etc, and try bypass it.
It then encrypts all files starting with the defined directory on the line 60 in deathransom.py.
Then, downloads the ransom request script, disable cmd, taskmanager and the registry tools. And starts the counter to delete the files.

[Image: 68747470733a2f2f696d672e796f75747562652e...742e6a7067]
thanks
This post is by a banned member (succman669999) - Unhide
succman669999  
Supreme
115
Posts
35
Threads
3 Years of service
#55
04 July, 2021 - 12:27 PM
(06 May, 2020 - 06:11 PM)MiNdFuCkErY_1337skid Wrote: Show More
First, the script checks if it's in a sandbox, debugger, vm, etc, and try bypass it.
It then encrypts all files starting with the defined directory on the line 60 in deathransom.py.
Then, downloads the ransom request script, disable cmd, taskmanager and the registry tools. And starts the counter to delete the files.

[Image: 68747470733a2f2f696d672e796f75747562652e...742e6a7067]

thx m8.
yuh
This post is by a banned member (bleach45) - Unhide

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)

About Cracked.io

Cracked.io is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account