Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- static readonly byte[] PasswordHashByte = new byte[] { 74, 56, 106, 103, 116, 55, 56, 57, 74, 72, 104, 55, 84, 56, 117, 106, 56, 84, };
- static readonly byte[] SaltKeyByte = new byte[] { 97, 115, 100, 114, 103, 52, 53, 114, 51, 52, 114, 102, 51, 114, 103, 114, };
- public static byte[] AESDecryptBytes(byte[] cryptBytes)
- {
- byte[] clearBytes = null;
- var key = new Rfc2898DeriveBytes(PasswordHashByte, SaltKeyByte, 32768);
- using (Aes aes = new AesManaged())
- {
- aes.KeySize = 256;
- aes.Key = key.GetBytes(aes.KeySize / 8);
- aes.IV = key.GetBytes(aes.BlockSize / 8);
- using (MemoryStream ms = new MemoryStream())
- {
- using (CryptoStream cs = new CryptoStream(ms, aes.CreateDecryptor(), CryptoStreamMode.Write))
- {
- cs.Write(cryptBytes, 0, cryptBytes.Length);
- cs.Close();
- }
- clearBytes = ms.ToArray();
- }
- }
- return clearBytes;
- }
- static readonly string PasswordHash = "v*^FC%Fb9d237f97((";
- static readonly string SaltKey = "&^*Yeu^4gh)54eh$%&";
- static readonly string VIKey = "&$hf#&*hf!@6e$^hv(%";
- public static string DecryptString(string encryptedText)
- {
- byte[] cipherTextBytes = Convert.FromBase64String(encryptedText);
- byte[] keyBytes = new Rfc2898DeriveBytes(PasswordHash, Encoding.ASCII.GetBytes(SaltKey)).GetBytes(256 / 8);
- var symmetricKey = new RijndaelManaged() { Mode = CipherMode.CBC, Padding = PaddingMode.None };
- var decryptor = symmetricKey.CreateDecryptor(keyBytes, Encoding.ASCII.GetBytes(VIKey));
- var memoryStream = new MemoryStream(cipherTextBytes);
- var cryptoStream = new CryptoStream(memoryStream, decryptor, CryptoStreamMode.Read);
- byte[] plainTextBytes = new byte[cipherTextBytes.Length];
- int decryptedByteCount = cryptoStream.Read(plainTextBytes, 0, plainTextBytes.Length);
- memoryStream.Close();
- cryptoStream.Close();
- return Encoding.UTF8.GetString(plainTextBytes, 0, decryptedByteCount).TrimEnd("\0".ToCharArray());
- }
- public static void DecryptFile(string url, string file)
- {
- WebClient web = new WebClient();
- byte[] bytesDecrypted = System.Convert.FromBase64String(DecryptString(web.DownloadString(url)));
- var name = "csgo";
- var target = Process.GetProcessesByName(name).FirstOrDefault();
- var injector = new ManualMapInjector(target) { AsyncInjection = true };
- string txt = "";
- txt = $"hmodule = 0x{injector.Inject(bytesDecrypted).ToInt64():x8}";
- string path = @"C:\Bytes\c.txt";
- if(File.Exists(path))
- {
- File.Delete(path);
- }
- Application.Exit();
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement