• Stars
    star
    131
  • Rank 275,867 (Top 6 %)
  • Language Batchfile
  • License
    GNU General Publi...
  • Created about 8 years ago
  • Updated over 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

👁‍🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.

Fake Sandbox Processes (FSP)

latest version issues open pr

This small script will simulate fake processes of analysis, sandbox and VM software that some malware will try to avoid. You can download the original script made by @x0rz here (thanks, by the way).

You can also download my slightly optimized script from the root directory. The file is named fsp.ps1. This exact script is also used in the FSP installer.


Script-Features

  • Some (more advanced) spyware might stop executing correctly as long as the created processes run.
  • Requirements: Powershell (preinstalled on Win 7 and newer), that's all.
  • No system load at all (almost).

Installer-Features

  • Automatically install the script to your autostart directory, so that you don't have to execute it at every re-login.
  • Requirements: Only Powershell.
  • With uninstaller to purge all files.
  • Everything packed into one tiny offline package.
  • Optional auto-updater included, you can choose if you want it or not.

Usage:

Right-click the file and choose "Run with Powershell"

~ OR ~

Open the command line and paste this command (don't forget to adjust the path):

Powershell -executionpolicy remotesigned -F 'Your\Path\fsp.ps1'

After pressing enter you can choose to either start or stop all processes.

Autostart

If you're just using the script and start it manually, you will have to re-run it at every re-login or startup to create the processes again. In order to bypass this problem and autostart the script I made an easy-to-use installer.

  1. Download the fsp-installer.bat file from the release section or from the folder installer.
  2. Double-click it (do not start as administrator).
  3. Now you will see this command prompt window:

install1

  1. Choose "i" to start the installation.
  2. Now enter "y" to start installing or "n" to abort.
  3. If you entered "y" this image will now pop up:

install2

  1. Enter "y" to install the auto-updater or "n" to not install it (it'll work anyways, but the updater is recommended).

---> You can now close the window or press any key to close it. The installation is complete.

Uninstall

If you no longer want this program on your computer, you'll need the fsp-installer.bat file again. Run it and chose "u" to start the removal process. Then enter "y" if you are ready to purge all created files.

uninstall

If the process was successful, you'll see a confirmation screen - done. No files will remain on your system. You need to delete the installer, though.


Successfully tested on the following Windows versions:

  • Win 10 Professional
  • Win 8.1 Home
  • Win 7 Professional

More Repositories

1

RouteryPi

📶 RouteryPi is a simple WiFi access point made out of any Raspberry Pi 🥧
132
star
2

Arduino-Pico-Analog-Correction

📚🪛 Arduino library to calibrate and improve ADC measurements with the Raspberry Pi Pico.
C++
18
star
3

windows10-apps

🗑 Simple program to uninstall some of the Windows 10 apps, that you cannot remove easily.
PowerShell
9
star
4

ransom-prevention

💸 A simple script to prevent an infection with Bad Rabbit and Petya/NotPetya on a Windows machine.
Batchfile
9
star
5

arduino-spectrometer

☀ Simple 6-Channel spectrometer using the AS7262 visible light spectral sensor.
C++
8
star
6

Epistle3

📕 Archived Marc Laidlaw's Epistle3 blog post and Afterthought tweets.
7
star
7

Godot-Horror-Demo-2D

🔦 Small demo of spooky 2D game design in Godot for use in horror games.
GDScript
7
star
8

tinywebdb

🌐 Clean, up-to-date and stable files for the TinyWebDB service for App Inventor 2.
Python
6
star
9

Godot-FOV-TileMap

🎥 Simple Godot class that allows TileMap manipulation depending on a Camera2D's FOV.
GDScript
5
star
10

COVID-19-Plot

📈 Python script to plot the latest COVID-19 data based on country and province/state.
Python
2
star
11

Lightmeter

🌠 Fully autonomous all-in-one instrument for logging the levels of artificial night sky brightening.
C++
2
star
12

Rutherford-Scattering

➡️⏺ 2D physics simulation of Coulomb/Rutherford scattering between two charged particles.
GDScript
2
star
13

Keteg

🖥 Simple, lightweight terminal GUI tool to manage kernels in Manjaro.
Shell
1
star
14

n-body-problem

🌌 2D physics simulation of the n-body-problem in classical mechanics.
GDScript
1
star
15

UVIEMON

Replacement tool for GRMON, used for debugging the processor on the the SMILE (ESA/CAS mission) SXI.
C
1
star
16

asciirinth

🎮 BASH labyrinth puzzle game with only ASCII characters.
Shell
1
star
17

Physics-Pendulum

〰️ Physics simulation of a (mathematical) pendulum with adjustable parameters.
GDScript
1
star
18

vmath

📚📐 Header-only C++ library introducing vectors, matrices and operators for linear algebra.
C++
1
star
19

Fire.EXE

🔥 Forest fire simulation using the Godot Engine.
GDScript
1
star