This program is intended for research purposes. Use at your own risk.
In case it isn't obvious, this program is malicious by nature. Do not execute this unless you know what you're doing! (It's only about 20 lines.)
This piece of malware locks you out in as many ways as it can.
This software is pretty merciful in its default configuration. It preserves the settings that were previously set and doesn't delete files.
The message can be set by running settings set lockdownmode.message "Your message here"
. Mercy on settings can be disabled by running settings set lockdownmode.havemercy false
.
The software developers are only aware of two ways of removing this software:
- Ask a server admin to delete the startup script
- Put the computer itself into a disk drive and delete it yourself
If you're writing an "antivirus" and want to defend against this:
- Keep backups.
- Attempt to make a rigged version of the
http
API that checks for known malicious files' hashes.
- Add option to nuke floppy disks when boot is tried