Go Back   Carder.life > [en] International Forum > Hosting & Botnets
Reload this Page Thanos Ransomware Affiliate Program & Sellings

CARDER.MARKET - CARDING FORUM FOR PROFESSIONAL CARDERS


Reply
Page 2 of 2 1 2
 
Thread Tools Display Modes
  #11  
Old 01-23-2025, 03:24 PM
Fastservice's Avatar

Fastservice Fastservice is offline
Join Date: Jul 2023
Posts: 7
Default

Change Log.
--New third party backup solutions have been added to the list that will be disabled along with some antivirus services.
--Client now will not only self delete at end of encryption but also physically erase its own sectors in the hard drive to make forensics more difficult.
--A fast files permission changing feature procedure will help capture more files.
--Ransom note will now be copied earlier ate the very start of encryption both in windows logon screen as well as in a hidden location where it will be shown in every windows restart. These two measures will help to profit from partially encrypted targets (in case you haven't use persistence option to asure ransomware restarting after windows restart or computer turned off).
--New feature will allow to lock user access from his windows account.
--Bootlocker that will show the ransom note at boot level (not available in UEFI Secure Boot protected OS).
--Some images of the new features:
https://i.postimg.cc/T3kmtW58/Uof6de7.png (LogOn Ransom Note configuration)
https://i.postimg.cc/yxzSDmtR/QvCaTEz.png (LogOn Ransom Note shown)
https://i.postimg.cc/T1q5gyv4/tuT6DQ8.png (User account locked)
https://i.imgur.com/rsdjKE3.png (Boot Locked).
  #12  
Old 01-23-2025, 03:26 PM
Fastservice's Avatar

Fastservice Fastservice is offline
Join Date: Jul 2023
Posts: 7
Default

Change Log:
--Faster and reliable directory traversing algorithm in the decryptor (create a new one to take advantage of this).
--If windows logon password is changed, now ransomware creation log will reflect this password as a reminder.
--LAN procedure optimized to perform wake on LAN and LAN spreading in a single pass skipping IP addresses not typically associated with common LAN setups.
--Option to skip C drive in the encryption process. In some systems C drive does not contain important data and in some others it does. So you will have the option to skip it or not.
--On-the-fly encryption of newly connected drives occurring while the encryption process is on its way (like USB drives, memory cards, thumb sticks, etc.). If new drives are connected during this period they will recruited for encryption too. Each newly connected drive will be handled in a separate encryption thread.
--Encryption impersonating system processes using process hollowing (csc.exe in the video, 4 options available): https://mega.nz/file/YIZRFajL#WpmKwR...O_hHcjVUIzqJVU
  #13  
Old 01-23-2025, 03:28 PM
Koka's Avatar

Koka Koka is offline
Join Date: Jul 2024
Posts: 1
Default

looking for this product. Any leads??
  #14  
Old 01-23-2025, 03:30 PM
WuGang's Avatar

WuGang WuGang is offline
Join Date: Mar 2022
Posts: 0
Default

any feedbacks about the work,please
  #15  
Old 01-23-2025, 03:32 PM
MIB's Avatar

MIB MIB is offline
Banned
Join Date: Sep 2021
Posts: 151
Default

Does it work on Windows 10 ?
Reply
Page 2 of 2 1 2

Tags
NULL

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Forum Jump




All times are GMT. The time now is 03:21 PM.

Contact Us - Carder.life - Archive - Top