ICA.SU - Carding Forum | Кардинг форум | Foro de carding | Kardierforum | Forum de cardage | Forum di cardatura | 梳棉論壇
Go Back   ICA.SU - Carding Forum | Кардинг форум | Foro de carding | Kardierforum | Forum de cardage | Forum di cardatura | 梳棉論壇 > FORUM FOR RUSSIANS > Вирусология

Вирусология
Крипт файлов, трояны, вирусы.

Advertising
ДАМП+ПИН dump+pin shop




Reply
Thread Tools
Unread 31.05.2019, 16:20   #1
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default Криптолокер [Offline Ver., Online Ver., С++]



========================================
CRYPTOLOCKER [OFFLINE_VERSION, all WIN, С++]
========================================


NOTE
A QUICK and EASY build of offline cryptolocker, correctly encrypted/injected by a non-resident loader, will provide you with a 100% PROFIT.

DESCRIPTION



With high-quality cryptography, with a protector, with an injection into the process - absolutely imperceptible, very fast.
- -
Native, written in C++, without dependencies and other junk.
Works on all versions: Windows + Windows Server.
Do not need admin rights, bypass the default UAC.
Perfectly crypting, does not contain overlays, does not use settings storage resources.
Low weight (<380 kb), the requirement is repeatedly encrypted and sewn in the build.
Implemented skip Windows service directories.
Strong encryption algorithm, a random key for each file is IMPOSSIBLE to decrypt!
Your master key: RSA-2048. Personal key for each machine: RSA-256. File Encryption: AES-256.
Scans all writeable drives connected to your computer.
Pre-encrypt files after reboot, if necessary.
Shadow copies are encrypted. Unable to recover files from shadow copies and restore points.
A large array of file types for encryption: configured when building a build.
It does not communicate with the server, it is completely autonomous.
Two options of encryption, in part or in full: configured when building the build
With partial encryption, only the first 64 kb of the file is encrypted, if the file is <64 kb, then it is entirely.
With full encryption - the entire file is encrypted.
When encrypting in each directory creates a requirement, and the desktop - only after completion.
The kit includes utilities: complete decryption, decryption of a single file, and key generation + video + description.

[свернуть]


FROM YOU
Your data: your name, list of extensions, text, BTC, redemption amount, Jabber or E-mail.

ADDITIONALLY
There is a video of the work of the cryptolocker and the decryption of the locked machine. I will explain all the nuances.
Rebuild (change: extensions, list of file types, text) - $20

PRICE FOR OFFLINE VERSION - $100


======================================================
CRYPTOLOCKER, WEB-PANEL [ONLINE_VERSION, all WIN, С++]
======================================================


NOTE
Build of online cryptolocker is RECOMMENDED for work on Dedik, tk makes requests to the network (to the panel).

DESCRIPTION



It is possible to independently change the text of the requirement; otstuk in the panel and the generation of the decryption key.
- -
Native, written in C ++, without dependencies and other junk.
Works on all versions: Windows + Windows Server.
Do not need admin rights, bypass the default UAC.
Perfectly crypting, does not contain overlays, does not use settings storage resources.
Low weight (<380 kb), the request is received from the server.
Implemented skip Windows service directories.
Strong encryption algorithm, a random key for each file is IMPOSSIBLE to decrypt!
Your master key: RSA-2048. Personal key for each machine: RSA-256. File Encryption: AES-256.
Scans all writeable drives connected to your computer.
Pre-encrypt files after reboot, if necessary.
A large array of file types for encryption: configured when building a build.
Otstuk in the panel only after the start of encryption.
Receives the necessary data from the server.
Two options of encryption, in part or in full: configured when building the build
With partial encryption, only the first 64 kb of the file is encrypted, if the file is <64 kb, then it is entirely.
With full encryption - the entire file is encrypted.
When encrypting in each directory creates a requirement, and the desktop - only after completion.
The kit includes: a web panel, utilities for full decryption + decryption of a single file, video + description.

[свернуть]


FROM YOU
Link to host web panel.

ADDITIONALLY
There is a video of the work of the cryptolocker and the decryption of the locked machine. I will explain all the nuances.
I will assist in the installation of a web panel on a bulletproof hosting.
Rebild (change: extensions of encrypted files, list of file types, link to host) - $20

PRICE FOR ONLINE VERSION - $100


---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]


Public PGP Key



-----BEGIN PGP PUBLIC KEY BLOCK-----

mQENBFzC2d8BCAC02gol+faarRo4RgdkZiqw6gNPwmfKAXmwvw h1ibjf0k2MG5WK
hXZ87PT/cXrOpeNRKlXgU4PGoiJgVYkD4ikJAtpHwglZSQOLiBxqnGKNcN aKdOc6
48BS6ET3btHfjt+1+57t/VPlDIyf/F8ILHylLTUqS4b2Gy3QemDQB9SeIBHPoWFM
UgRSa392LJp+wA8O6a3lsmVN+HlmmyXIgf6vfCfgIa4QYDl5o7 dN7XgoaEJYsWty
CrUXSP20rJPTLCfCtSpjYcOo0usFF611z2Sw0448rZd1hMfcR0 e6RTB8byhhhYac
njwd9uhWsWkfYTFd5S8l6SmPZ0xKXluM2vQ1ABEBAAG0HGJheT BuZXQgPHp6YWdn
emlnQGdtYWlsLmNvbT6JAVQEEwEIAD4WIQSAi6orjq/cCIfSJiW8vAJVPDOytAUC
XMLZ3wIbAwUJA8Nu8QULCQgHAgYVCgkICwIEFgIDAQIeAQIXgA AKCRC8vAJVPDOy
tOL+CACNd3nDFQuV05AE1QyHRPaaVvigRaImJB9IqBHB+ti3aQ veA+1E3lHJCzYN
vSz3swvPgPJNkBjpvyEKYOJLbd5N+zbd60znMmT/+SKHWNihLR1VzprrYEAj06Tc
IZQGGZWPQql/McOg6F3K5QKIpuqPeaydXEAwEclqR7Dc8slu9UJX9RUb9F+ner 2l
ltTbCNCMPTBfVj8w3Iwcx2xXb2rGfxKc6gCO50+WNSHNjsesVR lfh6Sh30aLPKdG
4cde0lVENDAim4fg8jh/Gn1Ot3qVnTPuSVV0zVcg3F3aZu2UxMiqln1Ctek1LueG
cPKlDR417ZRydaeP1+VyjMU4/B6ouQENBFzC2d8BCADITbFp9YVnBzzmGKxbtV5j
N2s2Nqf3yi+eDx65YNrQP6wpl4KB1E+BBC0lqq4bnQkPIkg70Z qegeEm4ZuKybam
I49bDIy+o+YpcbORw77Dh+4cWeFbs0gSESfBRsVdhtMrRuZvuW yDcBcuKlYXN7Wl
03aWYen2NLlS45oh3UaBNuZOkv+U6Y9MnQD8uVmE2gOm2MUih5 MEVCl6IKH0er2J
7XVRvy0cV12EbZBGXHMwJdLiuD2IsjHabg6Lv5GMhWNcM+hWKS 82SeKaEdU0kxnO
F6eU49OcSAAf6Bc4naVaX3G9Xb2kSqk4G3jXNDXpjdNt74Z+o4 RIzB8HLg/XqeCX
ABEBAAGJATwEGAEIACYWIQSAi6orjq/cCIfSJiW8vAJVPDOytAUCXMLZ3wIbDAUJ
A8Nu8QAKCRC8vAJVPDOytErVCACqb+A+pVz5GalDBG7aXpBBuf SDq+A39ikoYuRr
TZdTxp2ZFTy1M6iSVRRLjtyZARkvqUp+WvpMxVqTe3bQjyNkkb 0pUK5lZaxjlzPR
DHtZl2J33jSjoIZ2cZLhqOXcn371zpVd4H4fsrIdRcaycA6+Xp L8fMFjtLavtrm9
oTHwqSnkqVggyV4OWxxoYLYRP+Kn3AO6IKIXid9uhIz5B+RhLF uQvOEK1p3MriFd
2JLA6aoYIhNmo6Dv9snTjG2VI/W43aiZf+t3LOiDLXwMoNxXZz03L4owia2hYzi9
raiZxdAdnTV/edUdmSLAwr/w2QUkCP1G/z1Ellv4w/Yw1Hcd
=lJSq

-----END PGP PUBLIC KEY BLOCK-----

[свернуть]

INFO



We generate maximum profit with the help of cryptolocker.
================================================= ==========

Cryptolocker is an extortionist cryptographer, with an action algorithm aimed at forcing the encryption of computer files according to a certain list of extensions.
While running on the victim's computer, the crypto-fiber encrypts all files according to the list of extensions and uploads the redemption file to each directory it visits.
The redemption file contains text explaining the reasons for encryption, as well as the amount of the ransom for decryption and the contacts of the owner of the cryptolocker (e-mail or jabber).
After encryption, the cryptolocker will be deleted, leaving the encrypted files.
Files are encrypted with a robust algorithm. After encryption, they MUST NOT be decrypted without a special key, which in turn can only be obtained using the decryption key from the owner of the cryptolocker.

Actually, earnings is reduced to the distribution of cryptolocker on computers or servers of potential victims and the further collection of ransom for decrypting files. Decryption of files is carried out by a special utility that comes with a cryptolocker. The victim of the encrypted computer sends the key-file to the e-mail or jabber specified in the request and after payment receives the key and the descrambler with which it decrypts the encrypted files.

The most common ways of delivering cryptolocker to the victim's computers
================================================= ================

Social engineering, cold calls, followed by mailing
Mailing: docx or pdf (exploit)
Search engines: Google, Yandex
Search and bruteforcing fatty dedikov
Installing loader through shadow services
Own virus landing page or web directory on the Internet.
... indicated the most basic ones, although there are much more of them, there are private ways that cost money. Which one you choose is a matter of taste. I have arranged ways to increase both the profit and the investment in them of additional funds. Each method requires a separate tremendous article with its own nuances and "pitfalls".

Example: if you use foreign dedicated server (servers of organizations, firms) with subsequent encryption with a cryptolocker - the price tag starts from $2000.

[свернуть]
bay0net is offline   Reply With Quote
Unread 27.03.2020, 06:45   #2
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 06.04.2020, 09:52   #3
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 06.05.2020, 05:52   #4
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 21.06.2020, 06:53   #5
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 06.07.2020, 04:54   #6
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 23.08.2020, 09:13   #7
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 31.10.2020, 01:32   #8
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 29.11.2020, 02:21   #9
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Unread 12.12.2020, 08:43   #10
bay0net
Member
 
Join Date: 31.05.2019
Posts: 12
Default

---- CONTACTS ----
Selling here: market.ms (bay0net)
Jabber: [email protected], [email protected] [OTR]
Telegram: @bay0net [PGP]
Message to PM: [PGP]
bay0net is offline   Reply With Quote
Reply

Tags
cryptolocker, ransomware, криптолокер

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



All times are GMT +2. The time now is 18:06.