Ransomware attack DEEP DIVE and FULL RECREATION (open source)
Ransomware attacks, despite being extremely threatening and "scary", are quite interesting to code. Today we're going to deep dive onto how exactly I managed to create a sample in order to educate people and to actually see how malware like that works... Get ready because you're in for a ride!
Watch more from this series: • 🚧Deep malware analysis
Links:
Source code: https://github.com/malwarepad/toy-ran...
Music Used:
meganeko - Space Magic: • meganeko - Space Magic
Timestamps:
00:00 Part 1 fast forward
00:12 Part 2 from previous video
01:04 Introduction
01:35 Past attack: Wannacry
01:56 Seperation between user files and system files
03:15 Disclaimer
03:27 Stack
04:10 Examining client code
04:25 Examining client code: HandleFile.cpp
05:42 Examining client code: HandleDirectory.cpp
07:00 Examining client code: HandleInstallation.cpp
07:40 Examining client code: GetEncryptionKey.cpp
08:14 Examining client code: PostEncryption.cpp
08:24 Examining client code: DecryptionPrompt.cpp
08:37 About the server...
09:06 Testing it out yourself!
09:37 Anyone can browse the code
09:46 Closure
#malwarepad #virus #malware #ransomware
