Skip to main content

CTHULHU

Documentation about CTHULHU a ransomware in Rust with a custom C2 created in collaboration with Hxtninfosec, MasterBigD, Ezeqielle

Project overview

Overview CTHULHU is a package a package containing a ransomware and a C2. The ransomware is devlo...

Infrastructure

This document provides an overview and documentation for the API implemented using Docker contain...

Docker Container Setup

The API is designed to run inside a Docker container. The container includes the necessary depend...

Docker Compose Setup

To simplify the deployment and management of the API and its dependencies, Docker Compose is used...

Ransomware

This document provides an overview and documentation of the Rust code for the ransomware.

Debugger and Sandbox Detection

This code provides functions to detect the presence of a debugger or a sandbox environment. It in...

System Information Retrieval

This code provides functions to retrieve various system information such as disk details, operati...

Encryption / Decryption files

Overview This code provides functions for encrypting and decrypting files using AES-256 CTR encry...

Ecryption / Decryption for external disk

Function Description The code snippet defines a function named encrypt_decrypt_external_disks wit...

API connection

Overview This code provides a C2API struct that encapsulates functionalities related to interacti...

Shadow copy deletion

This code provides a function to delete shadow copies using the vssadmin command. delete_shadow_c...

Main.rs

Overview This code represents an entry point for a program that performs certain actions based on...

API

This document provides an overview and documentation for the API implemented in the provided code...

Base URL

The API create its own nodejs server at this address http://localhost:5000/

Endpoints

Create a New Agent URL: /api/agent/new Method: POST Description: Create a new agent and sto...

Database Connection

The API connects to a MySQL database for storing agent information. The database connection detai...

User Folder Creation

The API creates a folder named /CTHULHU/users if it doesn't already exist. Additionally, for each...

RSA Key Pair Generation and Storage

For each agent created, the API generates an RSA key pair consisting of a public key and a privat...

C2

Documentation about the C2 workflow and view

Database

Database Schema Documentation Table: agent This table stores information about agents. Column ...

View

Agent View In this page you can see all the agents that are connected to the C2.

License

MIT License Copyright (c) 2023 Ashguard Permission is hereby granted, free of charge, to any pers...
Back to top