HOW TO BUILD A TROJAN by Wax

=================================================== CHAPTER II - THE CLIENT =================================================== Assuming you know your language well enough to be able to implent data structures and such I will describe WHY and HOW to use them. First you start of with your blank form, depending on how many functions you want you can create a number of buttons or a menu (or whatever you think suits best) Here's a sample GUI on how it could look like, I've used menu's (in the drawing they are unfolded) _________________________________________________________ |PROGRAM NAME______________________________________- [] x | |FILE_________ COMMANDS_____ HELP______________________| |Setup | |Shutdown | |About | | |Connect | |Reboot | |Help | | |Discconnect | |Open Cd-Rom | |------| | |Exit | |Close Cd-Rom | | |------------| |-------------| | | | | | | | | | | | |_________________________________________________________| Throughout this Chapter I will refer to menu functions, u can see it when I use the word in full capitals, and between apostrophes ( '..' ) At 'FILE' -> 'SETUP' you can make a setup dialog, at which users define the IP of the computer to connect to, as well as the PORT the server is opened to receive commands. ~ ~ ~ ___ ~ At 'FILE' -> 'CONNECT' the command to connect to the server ~ \_\\\\\/ o\ ~ is issued, make sure to keep the user informed of the connection ~ / /////\___/ ~ as well as connected process, by e.g. placing a label which ~ ~ ~ updates every 3 seconds with the current Winsock status, so that ~ aTm ~ they know wether they are connected or not. At 'FILE' -> 'DISCONNECT' the command to disconnect from the server is issued, at this one too make sure it is clearly noticable that you are disconnected from the server. And offcourse at 'FILE' -> 'EXIT' you can exit the program At 'COMMANDS' -> '...' You can add the commando to be executed but more of that at the technical part of the client. At 'HELP' -> 'ABOUT' you can put your own credits, and offcourse some credits for me, since u have used this guide to create your Trojan :) OK, now you know the basics on the GUI, offcourse you can always use graphics, or any other type of gui, but make sure it is a GUI, or optional GUI, since most users nowadays are Windows users. (There's a complicated GUI Drawing at the end of the file) Now for the 'Technical' Part of the Client; Sending the commands to the server. -- This will be done using Winsock's senddata command. Say you'd want to send the following string to the server: CD-ROMOPEN, then in VB you'll need to type winsock1.senddata "CD-ROMOPEN" To make sure there is an connection u can use an IF..THEN statement to check the winsock's satus, like this: -- If winsock1.state = sckConnected Then winsock1.senddata "CD-ROMOPEN" else msgbox ("You're not connected!"),vbCritical end if -- Ok, this is the client, it is not that hard, and by using the above system to send strings you can let the Trojan's Server recognize them and issue the attached code on the victim's computer.

=================================================== CHAPTER III - THE SERVER =================================================== Now for the server, the server is the hardest part of the Trojan since there a lot of things it has to match to, I will try to make a complete list of what it should, or should not do: * Not Visible on the users screen * Not Visible on the TaskList (CTRL-ALT-DEL list) * Have a name that is not easily recovered * Auto-Starting up at startup (thru registry e.g.) * Not use much system power (RAM) Below is the code for a registry file which will add it's key and value to the registry so that the server will be started everytime windows starts (exe has to be in windows or system