EvilZone
Programming and Scripting => Scripting Languages => : Kara Ayaz December 31, 2014, 05:50:16 PM
-
Hi.
C: in "log, doc, docx, rar, zip, psd" folder scans files as the "Ayaz" copying. Then installing them to the server using the ftp information in virĂ¼s.py
(http://i.hizliresim.com/nG6GLg.png)
(http://i.hizliresim.com/vo2onR.png)
(http://i.hizliresim.com/1nWnMD.png)
(http://i.hizliresim.com/Lozo11.png)
Github: https://github.com/ayazhan/Staller
I did not bother to all file extensions, can develop friends who want to.
-
Thanks for the code, but I have no idea what you said in the post. Also a stealer in Python? don't think so, maybe good as a PoC but not when you need to deploy it... I suppose it's ok if you run it from a flash drive, then you can use Py2exe or something.
-
All types will work in that environment.
The required information can be made into exe file after entering. virus.py FTP information should be entered into :)
-
(http://mmoqq.com/wp-content/uploads/2012/05/Wat8.jpg)
Seriously though, It really hurt my head to try to read your interpretation of English.
And yes, I know English is not your first language, it still doesn't excuse that crazy mess.
I still have no idea about what this does, stealer?
anyway thanks for posting, I will consider it a challenge to decipher this.
-
Language is not important; codes is important;)
-
Language is not important; codes is important;)
It is, and yours is kinda messed up. But good work nonetheless :P
-
Trying to figure out what this does.
Scans for document type files for a user named Ayaz? Then ftps them to your site?
-
Trying to figure out what this does.
Scans for document type files for a user named Ayaz? Then ftps them to your site?
Well that is basically it. You solved the installing to ftp stuff mystery.
But first, this is not a virus.
Looks like we are only gonna search i the C:\ directory, there might be better goodies in other partitions, ya know.
The extensions are hard coded, i mean we could have default ones but a way ti specify new ones could be better. A way to transverse the different drives on windows would be good.
A config file might solve alot of the troubles you are facing.
Why not use a temporary dir to copy files to then exfiltrate them? Because your script ain't deleting the exfiltration dir created.
Imports: Did you really need to import os and os.path too. why in the hell did you need getpass for, i don't see you using it. Why is ftplib and threading there. You never do anything with them. Do you even know how to call a custom module?
And why did you have to write a new script somewhere else, you could have executed the code from your virus.py script or just placed them in you main script, the logic of this Software engineering is illogical.
Man, you sure are listening to the wrong people, hanging around the wrong forums and copying and pasting code the wrong way.
There is alot to correct with you code that my heart bleeds at how shitty it still is. I would care less if you used google translate the wrong way, but posting shitty code is .... You should learn some basic english and we can chat alot here about how to improve you code.