Link to Full Project Page

---

Reflection

I had never created any Ransomware or done much scripting outside of the Powershell/Bash class taught here at Champlain, so I had to do a lot of research to get this to function. This involved looking at a lot of other scripts for different things and trying to mix the concepts together. The most important of which was Adam Bertram's article "Encrypt and decrypt files with powershell and pgp" (https://4sysops.com/archives/encrypt-and-decrypt-files-with-powershell-and-pgp/). This article taught me a lt of how encrypting files in powershell can work, downloading gnupg through his resources. It taught me a lot of the basics of encrypting with a symmetric key in powershell, which I had never done before. Using Posh-SSH took some research because the syntax for the current version isn't very available, and it seemingly changed a lot of the ways people had been doing commands for SCP. I became a lot more familiar with some commands that I'd never really used in classes before, and it was fun to try and learn how they worked (albeit frustrating at times). I think if I took another crack at the project now that I have the background knowledge/experience of having created some basic malware I'd be able to get public key encryption working, but otherwise I really enjoyed learning about the creation of ransomware, and learning through my partner about mitigation strategy and implementation.

Sources

https://4sysops.com/archives/encrypt-and-decrypt-files-with-powershell-and-pgp/

https://www.nextofwindows.com/how-to-install-and-use-ssh-with-powershell