Owner of 'Tox' ransomware puts key database up for sale

[SIGSEGV]

Source: http://pastebin.com/FfdDSbBh

Dear users,

Just one month ago, in one instant, all what I've studied for months fused in one brilliant idea, which was then named Tox. I knew it was something new, something that was completely different from what was already there. I started designing the whole thing in my mind, then I started coding, reading documentations, testing software.

After two weeks of non-stop hard work, the platform was online.

A little more than a week ago, I started posting links around the deep web, in the hope somebody would have given Tox a try.

Things exploded.

Even before the website was ready to host users, the McAfee blog was featuring the article about this platform. The the number of the users started growing. From 20 to 50, from 50 to 100, it was doubling every day. Infections, with a little delay, started growing too.

In just one week, the platform counted over one thousand users and over one thousand infections, with an average of more than two hundreds of polling viruses per half-hour.

Yesterday, 2nd June 2015, I decided to quit.

Plan A was to stay quiet and hidden. Well, I think I screwed up.

It's been funny, I felt alive, more than ever, but I don't want to be a criminal.

The situation is also getting too hot for me to handle, and (sorry to ruin your expectations) I'm not a team of hard core hackers.

I'm just a teenager student.

Some have said I think out of the box, others said I'm a skid who just developed the worst ransomware ever. I think that both opinions may be true, but one thing is objectively true: with Tox, I opened a door for a whole new way of thinking. I'm sure that others will try to replicate what I did. Not just for bad reasons, maybe somebody (maybe myself?) will find out how to do something good based on all this.

One last thing: if I really was a team of hard core hackers, with time and resources, this would have become one the greatest viruses ever.

In these days, in the chat, people helped me testing and debugging the virus, but the most interesting part is that they suggested me how to improve it. I don't think that such a great brainstorming has ever happened in the process of designing a virus. Users were spurred to help me improving the platform, for their own good.

What's next? I'm selling all this out because even if I didn't, somebody would have developed his own Tox-like version.

I'm asking my users to be patient, I'm not going to scam you. In a few days I'll ask you a bitcoin address in the case somebody pays some of your ransoms. I'll forward you your part.

If nobody's going to buy the database, in one month I'm releasing the keys, and victims will have their files automatically unlocked.

My choices are not linked to the recent external events, I pondered all these choices on my own, for my own good.

Sincerily, Tox

PS: This is my personal PGP key

-----BEGIN PGP PUBLIC KEY BLOCK-----

~Snip~

-----END PGP PUBLIC KEY BLOCK-----

This kid sounds interesting...

Edit: Just to clarify, this ransomware is NOT related to the Tox instant messaging app.

[tomison25]

Interesting read.

[Unlikelyjoker]

Looks like i just found something to buy.

Fuck the NSA i do what i want.

/s

[Snickerzz]

tox, the messaging app? like this tox? https://tox.im/

 

I used that

[Guest]

Source? 

[SIGSEGV]

tox, the messaging app? like this tox? https://tox.im/

 

I used that

No, Tox as in the Ransomware for hire service.

[SIGSEGV]

Source?

Oops, added it

[Jerakl]

tox, the messaging app? like this tox? https://tox.im/

 

I used that

 

I wondered the same thing

[ObeseWalrus]

Super interesting.

[MrDynamicMan]

Snowden should buy it and use it to hold the NSA database ransom!

Now wouldn't that be a virus put too good use.

[Guerrero]

I got hit with ransomware and I had to reinstall windows today 

[Opcode]

I wouldn't be surprised if someone like Mcafee buys the database so they can create a decryptor for it. It's the best way to buy publicity.

 

tox, the messaging app? like this tox? https://tox.im/

 

I used that

Different, you can read more about Tox here.

[imperialplanet]

I got hit with ransomware and I had to reinstall windows today

sorry for your loss

[Trik'Stari]

Watch the NSA buy this and just put it on everyones computers, and demand a back door into everything before unlocking everything.

[BOT Edward]

I always knew Tox was a hoax, ever since I first saw it on /g/.

I just had a hunch, a "secure" messenger that requires a lot of permissions on an OSDRIVE? sounds a bit sus from the get go :lol:

[Gullerback]

so... hes ransoming the ransomers?

[deviant88]

Not sure what happened, the chat APP TOX which i tried in the past was actually a virus of ransomware-type? that got peoples PC's fucked up?and the guy is quitting because he cant handle it ?

Thats what i understood,thx for article wouldnt want to install Tox for another try in the future and get rekt.

[SIGSEGV]

Not sure what happened, the chat APP TOX which i tried in the past was actually a virus of ransomware-type? that got peoples PC's fucked up?and the guy is quitting because he cant handle it ?

Thats what i understood,thx for article wouldnt want to install Tox for another try in the future and get rekt.

I always knew Tox was a hoax, ever since I first saw it on /g/.

I just had a hunch, a "secure" messenger that requires a lot of permissions on an OSDRIVE? sounds a bit sus from the get go :lol:

Read the updated OP

[alicskysareblue]

still dirty as hell, should just release the keys to the victims in the first place

[BOT Edward]

Read the updated OP

Ohhh, thats my mistake for not checking the source

 

Either way I think the Tox messaging app is not very trustworthy.