This crypto ransomware is for academic and learning purposes. It encrypts every folder in the directory where it is ran. It also encrypts files found in subdirectories.
This ransomware is divided in two parts: the PHP server that receives API calls for creating/retrieving encryption keys, and the cryptoware-ransomware itself, which is a Go app.
- Place the files inside server/ransomware inside a folder named "ransomware".
- Move this folder to your PHP server.
You need Go for creating the executable binary of the ransomware.
The ransomware consists of the encrypter and the decrypter.
Building the decrypter
env GOOS=windows GOARCH=386 go build decrypt-directory.go
Building the encrypter
env GOOS=windows GOARCH=386 go build encrypt-directory.go
Take a look at this guide:
Segmented arrows stand for asynchronous calls.
