search

mauri870 / ransomware

A POC Windows crypto-ransomware (Academic). Now Ransom:Win32/MauriCrypt.MK!MTB
857 stars 413 forks source link

different dns #41

Open UN5T48L3 opened 5 years ago

UN5T48L3 commented 5 years ago

Hello again bro This time I have used docker for building binaries But When I run the exe file in another computer It shows this error. Where is the problem? ekran resmi 2018-07-06 19 48 27 ekran resmi 2018-07-06 19 48 16

UN5T48L3 commented 5 years ago

without tor;

ekran resmi 2018-07-06 20 58 18

Gembeltz commented 5 years ago

screenshot from 2018-09-01 16-38-35 have you been able to with this problem

mauri870 commented 5 years ago

@Gembeltz Your C&C server is running on port 8080 locally, the ngrok url is already pointing port 80 to 8080, so use the ngrok url with port 80 instead of 8080.

Gembeltz commented 5 years ago

yes i can, can the domain be replaced with .onion and forward ports with ngrok if how can the command be?

Gembeltz commented 5 years ago

if the server is hidden it will be better and more effective to spread this malware

Gembeltz commented 5 years ago

hi @mauri870 mauri can it be the version 1.2 version

Gembeltz commented 5 years ago

vps that supports servers and ngrok, what vps

Gembeltz commented 5 years ago

@mauri870 the file is too large to transfer to the victim