Jump to content

Dr0p1t Framework 1.3 || FUD Dropper


Diabl0
 Share

Recommended Posts

On Windows:

Hidden Content

    Give reaction to this post to see the hidden content.

 

On Linux:

Hidden Content

    Give reaction to this post to see the hidden content.

 

In essence this is simply a multi-platform downloader with a lot of features.

Features


  • Generated executable properties:
  • The executable size is smaller compared to other droppers generated the same way.
  • Download executable on target system and execute it silently..
  • Self destruct function so that the dropper will kill and delete itself after finishing it work
  • Escape disk forensics by making all the files dropper create and dropper also cleans its content before deletion
  • Clear event log after finishing.

 

 

+ Modules:


  • Find and kill antivirus before running the malware.
  • The ability to disable UAC.
  • The ability to run your malware as admin.
  • Full spoof by spoofing the file icon and extension to any thing you want.
  • ZIP files support so now you can compress your executable to zip file before uploading.
  • Running a custom ( batch|powershell|vbs ) file you have chosen before running the executable
  • In running powershell scripts it can bypass execution policy
  • Using UPX to compress the dropper after creating it

 

+Persistence modules:

 

  • Adding executable after downloading it to startup.
  • Adding executable after downloading it to task scheduler ( UAC not matters ).
  • Adding your file to powershell user profile so your file will be downloaded and ran every time powershell.exe run if it doesn't exist.

Download Link:

[hide-thanks]

Link:https://github.com/D4Vinci/Dr0p1t-Framework

[/hide-thanks]

Link to comment
Share on other sites

  • 1 month later...
Guest
This topic is now closed to further replies.
 Share

Chat Room

Chat Room

Chatroom Rules

No support in chat, open a thread.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.