by Knox_rw
Compressed with UPX
Released in June 2000
Un-detected muerte
====================
A few words:
=================================================================================================
* if u don't like this trojan then delete it
* it is not an easy thing to write a small trojan (i say this words to all the lamerz out there)
* don't e-mail me to ask stupid questions
* this is not a lamer trojan so that's why i don't make a button for every feature i add
* the lamer functions are in the fun pak.U must upload the fun.dll in victim's win dir
to use them.A plugin example is included.Use it to make your own functions (see \Work dir)
* many,many bug fixes were made since the beta was released!
Un-detected muerte features:
=================================================================================================
!WARNING! The commands are NOT case sensitive.
You can now use the new command window from the client.
Don't forget to edit the command first.
* you can protect your server with a password,you can choose the port and stuff like that.
you can also bind the server with another file(like a sfx archive,a photo,etc ...).
to do it just run the editserver.exe and have phun.(note:now the informations you type
will be encrypted)
* run file
* upload file
* run file after upload
* send message // WARNING:this will stop the server until
the victim pushes the OK button
* get cached passwords
* make directory // command: md;dirname
* erase directory - it has to be empty // command: rd;dirname
* delete file // command: del;filename
* list files // command: dir;path
* add to registry // command: addreg;regpath;description_key;what
* delete from registry // command: delreg;regpath;description_key
* send to URL |
play sound&video |-> all in one easter egg
show image |
* reboot computer // command: reboot
* get windows directory // command: wdir
* close server // command: kill
* remove server // command: remove
* names&handles of opened windows // command: list
* kill a specified window - by it's handle // command: k;handle
* execute a plugin function - a really cool feature
command: EXEC;[plugin_name];[function_name];[longint_value];[string_value]
look at the plugin example in the pak,make your own and send it to me.
i'll put it on the page if it is good.
regpath example(for addreg and delreg func)="Software\Microsoft\Windows\CurrentVersion\Run"
dir example=DIR;c: - this function can fuck up the server if not well used !
=================================================================================================
Last words:
=================================================================================================
* When u type a command follow the instructions or u'll fuck up the server !!!
* The functions from the fun pak are not listed here.Just use the client.
How to bind with editserver
===========================
* Bind with - here u place the file u wanna bind with (an exe file,a picture,a sound,etc...)
* Extract file to - the directory where to extract the file u wanna bind with
* Filename after (bind) - the name of the file (not the server) after the bind operation
note: do not include the extension
* Servname after (bind) - the name of the server after the bind operation
* Module name - the module (.mdl) to use
use a module with the icon u prefer (the rar_style,the install_style,etc ...)
* Result name - the name of the result file
@copyleft KnoX_rw - the dark side
http://home.cyberarmy.com/undetected
[email protected]
June 2000
Server:
dropped file:
c:\WINDOWS\server.exe
size: 17.920 bytes
port: 777 TCP
tested on Windows 98
November 26, 2004
MegaSecurity