CS440-Ransomware

Project component of SMU CS440 module where our team was taked to implement a ransomware

This Ransomware musn't be used to harm/threat/hurt other person's computer. It's purpose is only to share knowledge and awareness about Malware/Cryptography/Operating Systems/Programming. This ransomware made for learning and awareness about security/cryptography.

Workflow

Installation

Ensure that you have python 3.10.0 or higher, tkinter, Pillow, auto-py-to-exe, psutil, rsa installed

pip install <required libraries>

Once that's done, run auto-py-to-exe to convert koufu.py to exe file. You should see a popup like this:

Configure as follows:

1. Select path to koufu.py
2. Select one file option
3. Click on additional files option and import entire img folder as folder option
4. Click on convert .py to exe
5. You should see an output folder with the exe file inside

Once done, you can execute exe file as administrator to run ransomware.

To enable remote server, ensure that firewall for both Virtual Machine and local machine are set to off

Once turned off run the following command:

python server.py

Configuring IP Address

On your command prompt run the following command:

ipconfig

Configure IP_ADDRESS based Ethernet adapter VMware Network Adapter VMnet8: for both koufu.py and server.py

Generating & storing public.pem and private.pem

import rsa
import os
import sys

pubKey, priKey = rsa.newkeys(1024)

with open("public.pem", "wb") as f:
    f.write(pubKey.save_pkcs1("PEM"))

with open("private.pem", "wb") as f:
    f.write(priKey.save_pkcs1("PEM"))