Skip to content
/ CRYLINE-v3.0 Public

Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes only. The author is't responsible for your actions.

t.me/darxis

License

MIT license
5 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DarxiSR/CRYLINE-v3.0

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
CRYLINE-3.0
CRYLINE-3.0
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 

Repository files navigation

INFORMATION

Contact

Encoder

  • IDE: Visual Studio 2013 (Ultimate)
  • Language: C# (.NET)
  • OS Support: Windows XP, Windows 7, Windows 8, Windows 10
  • Components: .NET Framework 4.5+
  • Details: This malware encrypts all files on disk C/D/E/I...etc
  • Additionally: This malware using AES-256 cipher. ATTENTION! I didn't implement the encryption key storage function!
  • Info: Please, open this malware in the virtual machine. Thanks.

SHELLBUILDER

  • IDE: Visual Studio 2013 (Ultimate)
  • Language: C# (.NET)
  • OS Support: Windows XP, Windows 7, Windows 8, Windows 10
  • Components: .NET Framework 4.5+
  • Details: This utility will convert any file to shellcode, which can extract the LOADER component.
  • Additionally: This utility using BASE64 hash-function to create shellcode.
  • Info: Utility IS NOT dangerous. You can run and test without Virtual Machine!

BOOTLOADER

  • IDE: Visual Studio 2013 (Ultimate) OR Dev-C++ AND FLAT-Assembler(FASM)
  • Language: C++ AND Assembler
  • OS Support: Windows 2000, Windows XP, Windows 7, Windows 8, Windows 10
  • Components: Microsoft Visual C++
  • Details: This malware patched Master Boot Record
  • Additionally: ATTENTION! This malware is VERY dangerous because it modifies the OS boot modules
  • Info: Please, open this malware in the virtual machine. Thanks.

LOADER

  • IDE: Visual Studio 2013 (Ultimate)
  • Language: C# (.NET)
  • OS Support: Windows XP, Windows 7, Windows 8, Windows 10
  • Components: .NET Framework 4.5+
  • Details: This malware - it's a simple dropper. He's extracted bootkit and encoder in the TEMP folder and execute them
  • Additionally: ATTENTION! Malware works is very quickly. Infects OS in a couple of minutes and modifies the registry keys!
  • Info: Please, open this malware in the virtual machine. Thanks.

FRAMEWORKS

  • It's a simple package where the utilitis necessary for compilation and for the successful operation of the malware are located.

WORM

  • IDE: Visual Studio 2013 (Ultimate)
  • Language: C# (.NET)
  • OS Support: Windows XP, Windows 7, Windows 8, Windows 10
  • Components: .NET Framework 4.5+
  • Details: This malware infected files which useing .NET Framework
  • Additionally: ATTENTION! Malware works is very quickly. Infects OS in a couple of minutes and modifies the registry keys!
  • Info: Please, open this malware in the virtual machine. Thanks.

About

Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes only. The author is't responsible for your actions.

t.me/Darxis

Topics

windows security programming encryption cplusplus dotnet assembly malware ransomware source-code aes-encryption

Resources

Readme

License

MIT license

Security policy

Security policy
Activity

Stars

5 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages