Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



   1951

Kadavro Vector Ransomware v3 RaaS | Aes256-GCM (ChaCha20 combination) | E2ND ID

by angelbanker - 27 April, 2024 - 05:49 PM
This post is by a banned member (angelbanker) - Unhide
angelbanker  
Infinity
130
Posts
17
Threads
#17
OP 04 August, 2024 - 09:29 PM
New update released
• System logs cleanup added
• Updated UAC bypass script to evade all AVs except ESET, and some EDR/XDRs (completely rewritten from scratch)
• Trial Decrypt function completely rewritten, with more complex handling of ACL attributes to make decryption key retrieval impossible
• Full low-level API interaction implemented
• Trial Decrypt now runs in the background, speeding up the decryption of large files
• File encryption function for all types/extension rewritten, with improved cryptographic strength and encryption speed
• Added leak protection for chat IDs/bot tokens/host links using AES, returning a base64 string with a 16-byte key/IV
• Added progress bar and indicator for files being decrypted in real-time
• Added comprehensive instructions for successful key retrieval and decryption
• Completely updated HTML page, with $ to XMR converter added
• Multi-tier manipulation of Privilege Tokens added for the following privileges:
  • SeIncreaseQuotaPrivilege
  • SeBackupPrivilege
  • SeChangeNotifyPrivilege
  • SeSystemtimePrivilege
  • SeTimeZonePrivilege
  • SeCreatePagefilePrivilege
  • SeCreateGlobalPrivilege
  • SeCreateSymbolicLinkPrivilege
  • SeDebugPrivilege
  • SeRemoteShutdownPrivilege
  • SeImpersonatePrivilege
  • SeIncreaseWorkingSetPrivilege
  • SeIncreaseBasePriorityPrivilege
  • SeLoadDriverPrivilege
  • SeSecurityPrivilege
  • SeSystemEnvironmentPrivilege
  • SeDelegateSessionUserImpersonatePrivilege
  • SeManageVolumePrivilege
  • SeProfileSingleProcessPrivilege
  • SeSystemProfilePrivilege
  • SeUndockPrivilege
  • SeRestorePrivilege
  • SeShutdownPrivilege
  • SeTakeOwnershipPrivilege
[Image: Screenshot-4.png]

[Image: Screenshot-5.png]
[Image: Shooter-Screenshot-45-04-08-24.png]
[Image: Screenshot-3.png]


Working in private mode.

Contacts for rent:
My qTox ID - 0DF8A8515581B7BE24D2FC1F107AD38E20E6F26F6DF83E6C30AB49FF4707BD5720A0F4A38AB5
[Image: MrMonero.png]
My Session ID - 05eca1eae9cd4c27373b635def91514bd682cddd3bcc26d1c857bbcff3c7d28624

Second developer n1k7:
Session ID - 052b804fe69983cef6346fbbcc14053d418b967faba357eebaa9166f203bb36266

Telegram - none and will not be, do not feed scammers and other scoundrels.
This post is by a banned member (angelbanker) - Unhide
angelbanker  
Infinity
130
Posts
17
Threads
Bumped #18
OP 04 August, 2024 - 09:29 PM
This is a bump
This post is by a banned member (n1k7) - Unhide
n1k7  
Supreme
245
Posts
4
Threads
#19
06 August, 2024 - 12:14 AM
BUMP FOR MY FRIEND.
AFFORDABLE BUT POWERFUL AND LOW DETECTION CRYPT SERVICE, 0/26 on AVCHECK.NET GUARANTEE:
https://cracked.io/Thread-EchoCrypt-Prot...id37984886

 
Telegramhttps://t.me/n1k7l


This post is by a banned member (angelbanker) - Unhide
angelbanker  
Infinity
130
Posts
17
Threads
#20
OP 06 August, 2024 - 06:24 AM
Please stop cluttering my inbox with messages claiming that Kadavro is a copy of Cash Ransomware.
Cash Ransomware is a modified version of Kadavro v2 that was not used in RaaS but rather for personal purposes.
Knowing the individual behind Cash Ransomware, I can confidently say that it will not be released as RaaS, as I have included a piece of amusing code that disrupts the functionality of the trial decrypt. Despite promises and anticipations about its release from the current code owner, there is a minor detail that the person behind Cash Ransomware overlooked.

[Image: Shooter-Screenshot-54-05-08-24.png]
As the saying goes, "Haste makes waste."
This post is by a banned member (angelbanker) - Unhide
angelbanker  
Infinity
130
Posts
17
Threads
#21
OP 07 August, 2024 - 02:38 AM (This post was last modified: 07 August, 2024 - 02:39 AM by angelbanker. Edited 1 time in total.)
New client-requested  update released
The contact information for obtaining the decryption key can now be accessed by scanning the QR code.
When the QR code is clicked, the victim will have the option to download it.
A QR code scanner page has been added, which operates without requiring external .dll files, and detailed instructions are provided.

[Image: Screenshot-8.png]

[Image: Screenshot-7.png]


Working in private mode.

Contacts for rent:
My qTox ID - 0DF8A8515581B7BE24D2FC1F107AD38E20E6F26F6DF83E6C30AB49FF4707BD5720A0F4A38AB5
[Image: MrMonero.png]
My Session ID - 05eca1eae9cd4c27373b635def91514bd682cddd3bcc26d1c857bbcff3c7d28624

Second developer n1k7:
Session ID - 052b804fe69983cef6346fbbcc14053d418b967faba357eebaa9166f203bb36266

Telegram - none and will not be, do not feed scammers and other scoundrels.
This post is by a banned member (n1k7) - Unhide
n1k7  
Supreme
245
Posts
4
Threads
#22
07 August, 2024 - 07:09 AM
BUMP FOR MY FRIEND!
AFFORDABLE BUT POWERFUL AND LOW DETECTION CRYPT SERVICE, 0/26 on AVCHECK.NET GUARANTEE:
https://cracked.io/Thread-EchoCrypt-Prot...id37984886

 
Telegramhttps://t.me/n1k7l


This post is by a banned member (SillyFish834) - Unhide
SillyFish834  
Registered
4
Posts
0
Threads
#23
08 September, 2024 - 08:03 PM
I  hope this works :)
This post is by a banned member (ReanaWisky) - Unhide
ReanaWisky  
Registered
1
Posts
0
Threads
#24
09 September, 2024 - 07:07 PM
Hello, project still alive?

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread:

About Cracked.io

Cracked.io is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account