DPLoader Dev Thread | Rust CNC & Client

[DonutPaste]

DPLoader Dev Thread!

Current Functionality/Features

Im not good at making good looking things as you can see from the cnc photos and the thread but im trying my best and if you have advice or suggestions or requests just say because i am happy to hear some feed back

I do plan on selling this once its ready and well tested and when i do sell it, it will not be hwid locked or anything, 1 time payment and its yours as long as you keep your domains or IPs

CNC:

• Written in Rust
• Plug and play
• Secure and protected routes/endpoints
• Bot specific bidirectional encryption for communications

CNC Photos:

Client(s):

• Written in Rust
• Ability to inject and load in memory of both x86 and x64 files using dual PE solution
• PC info grabbing(No external api like ip-api | No opening cmd to run wmic):
  1. hashed hwid using a handful of necessary components
  2. OS
  3. PC Name
  4. GPU
  5. CPU
  6. Ram
  7. AV
  8. Country
  9. Uptime
  10. Build ID
• Multiple fallback domain support[3]
• Cross arch task funneling(The primary payload is x86 and when it gets a task for x64 PE(memory related tasks) it will send the command via IPC to Secondary payload that is x64 to run said command)

Currently finished CNC pages include:
Login page

Main dashboard with a heat/geo map of bot locations and a top 10 infected countries and a stats bar showing total bots, online bots, offline bots, dead bots

Pages ToDo:
Units/Bots Page and that will include: a dual table setup with one showing currently online bots and the other showing offline/dead bots and both will show the grabbed PC information and will be fully searchable

Tasks Page that will include: The creation of tasks(List isnt fully decided yet) and view tasks with the ability to modify them/delete them/pause them

Stats Page that will include: Various statistical charts showing various things like how many have gpu and dont have or type of hardware and location etc( I would like to see requests on what to show here other than generic information)

Settings Page that will include: Clearing various tables like tasks and bots with some being able to clear finished tasks or dead bots etc


Module Page: Unsure yet but it would be a cool idea but i would want to see what people would want for it

 

[ZEHV]

You could add a feature to your loader that shows whether it's a personal or corporate PC

 

[DonutPaste]

You could add a feature to your loader that shows whether it's a personal or corporate PC

If you can inform me of a reliable way of doing so most likely, i currently cant think of a way of doing it because i know a lot of companies that use traditional HP desktops with normal windows 10 or 11, you can PM me or tell me here on a good way to see and i can add it if its reliable

 

[swwwheart]

If you can inform me of a reliable way of doing so most likely, i currently cant think of a way of doing it because i know a lot of companies that use traditional HP desktops with normal windows 10 or 11, you can PM me or tell me here on a good way to see and i can add it if its reliable

Active directory joined PCs can be considered corporate, workgroup can be considered personal.

 

[DonutPaste]

Small update:
I made the units/bots page and added its functionality to gather the data from the backend, if you have any comments please let me know,

I will add actual functionality of the dashboard page next so there is photos of non placeholder data to show functionality

also if you check the photos there is also support for mobile users to see the data of bots

 

[DonutPaste]

For the people who asked/will ask the current size of the PEs are

733KB for x86
240KB for x64

The sizes will change as i make stuff more efficient and add-on

 

[Yuji0x01]

can u send src code pls...i'm working with rust too....maybee i can help

 

[Yuji0x01]

for the gui, which crate have u used ?

 

[DonutPaste]

can u send src code pls...i'm working with rust too....maybee i can help

Im going to be selling this so i wont be giving the source code out because that will be my income

 

[Yuji0x01]

Im going to be selling this so i wont be giving the source code out because that will be my income

ah okey brother...good luck then ))

 

[DonutPaste]

Another small update, i implemented proper communications of the main dashboard so i will post the current photos and stats of the loader:

Changes:
Implemented secure encrypted IPC communications of the x86 PE and the x64 PE

ToDo:
Tasks Page
Statistics Page
Settings Page

x86 PE: 720KB
x64 PE: 338KB

Login Page:

Dashboard:

Units Page:

 

[DonutPaste]

Im using ChaCha20Poly1305 for communications for anyone wondering.

 

[DonutPaste]

Hello everyone, im curious of what tasks people would like the loader to have other than like

download to disk, self injection of shellcode and remote injection of shellcode


and what filters should there also be, would have to be for this data collected

hwid
os
name
build_id
gpu
cpu
ram
av
country
arch

 

[DonutPaste]

For now this will be the task page till i get input from users

Obviously these are place holder stats

 

[Lipshitz]

Hello everyone, im curious of what tasks people would like the loader to have other than like

download to disk, self injection of shellcode and remote injection of shellcode


and what filters should there also be, would have to be for this data collected

hwid
you
name
build_id
gpu
cpu
ram
of
country
arch

off the top of my head

domain joined
ability to search for custom things like crypto software

 

[Str0ng]

DPLoader Dev Thread!

Current Functionality/Features

Im not good at making good looking things as you can see from the cnc photos and the thread but im trying my best and if you have advice or suggestions or requests just say because i am happy to hear some feed back

I do plan on selling this once its ready and well tested and when i do sell it, it will not be hwid locked or anything, 1 time payment and its yours as long as you keep your domains or IPs

CNC:

• Written in Rust
• Plug and play
• Secure and protected routes/endpoints
• Bot specific bidirectional encryption for communications

CNC Photos:

Client(s):

• Written in Rust
• Ability to inject and load in memory of both x86 and x64 files using dual PE solution
• PC info grabbing(No external api like ip-api | No opening cmd to run wmic):
  1. hashed hwid using a handful of necessary components
  2. OS
  3. PC Name
  4. GPU
  5. CPU
  6. Ram
  7. AV
  8. Country
  9. Uptime
  10. Build ID
• Multiple fallback domain support[3]
• Cross arch task funneling(The primary payload is x86 and when it gets a task for x64 PE(memory related tasks) it will send the command via IPC to Secondary payload that is x64 to run said command)

Currently finished CNC pages include:
Login page

Main dashboard with a heat/geo map of bot locations and a top 10 infected countries and a stats bar showing total bots, online bots, offline bots, dead bots

Pages ToDo:
Units/Bots Page and that will include: a dual table setup with one showing currently online bots and the other showing offline/dead bots and both will show the grabbed PC information and will be fully searchable

Tasks Page that will include: The creation of tasks(List isnt fully decided yet) and view tasks with the ability to modify them/delete them/pause them

Stats Page that will include: Various statistical charts showing various things like how many have gpu and dont have or type of hardware and location etc( I would like to see requests on what to show here other than generic information)

Settings Page that will include: Clearing various tables like tasks and bots with some being able to clear finished tasks or dead bots etc


Module Page: Unsure yet but it would be a cool idea but i would want to see what people would want for it

this project look amazing, I'm also programming a private c2, which you use for the web panel, it's something like react, or a rust web framework ?, and yes great !

And for It:
Im using ChaCha20Poly1305 for communications for anyone wondering.
You can make it so that in each request to the server, the encryption password changes, then the traffic will be polymorphic, you can also add uri profiles, such as changing things like /registerClient to /index.html with a json

{"server":  "/amazon.html", "register": "/tailwind.js", "getcmd": "/api.html", "output": "/css/index.css", "upload": "/css/style.css", "bins":"/jsp/uploads", "name":"web camuflate"}

A good idea would be to add ntlm hash dumps like cobalt or mimiktaz

 

[DonutPaste]

off the top of my head

domain joined
ability to search for custom things like crypto software

I appreciate the input but this is just going to be a loader, maybe in the future ill make something specific to crypto but for now it will just be a reliable stable loader

 

[DonutPaste]

this project look amazing, I'm also programming a private c2, which you use for the web panel, it's something like react, or a rust web framework ?, and yes great !

And for It:
Im using ChaCha20Poly1305 for communications for anyone wondering.
You can make it so that in each request to the server, the encryption password changes, then the traffic will be polymorphic, you can also add uri profiles, such as changing things like /registerClient to /index.html with a json

{"server":  "/amazon.html", "register": "/tailwind.js", "getcmd": "/api.html", "output": "/css/index.css", "upload": "/css/style.css", "bins":"/jsp/uploads", "name":"web camuflate"}

A good idea would be to add ntlm hash dumps like cobalt or mimiktaz

Originally i was using a web framework but it was causing me issues and it was to much effort to continue using them even tho i was fully finished with the cnc using it but currently im using pure html/css/js and well obviously rust

The communications wont change much more than what i have because im happy with it but its unique encryption per bot so if they end up decrypting the communications on one system it will be different on another.

I probably wouldnt include ntlm dumps with the loader as i want it to stay as a loader but i do plan on making more tools after this once i have more money in my pocket because times are hard for me currently

 

[proexp]

Я не понял что он продает? красивые фотки админки что ли?

Где цена? где условия, где вся водная иформация?


Мы ждем нового блек с этим персонажем модерация?

 

[DonutPaste]

Я не понял что он продает? красивые фотки админки что ли?

Где цена? где условия, где вся водная иформация?


Мы ждем нового блек с этим персонажем модерация?

RU:
Во-первых, это тема разработки, раздел для продажи находится здесь: https://xss.pro/forums/104/.

Во-вторых, цена не установлена, потому что она все еще создается, и я хотел бы, чтобы она была закончена и, надеюсь, рассмотрена и оценена пользователями, прежде чем устанавливать цену.

Кроме того, зачем сразу быть враждебным?

Я использую DeepL для перевода, поэтому надеюсь, что вопрос о том, почему вы враждебны, не является ошибкой перевода.

Переведено с помощью DeepL.com (бесплатная версия)

EN:

First off, this is the development thread, the section for selling is found here: https://xss.pro/forums/104/

Second off, there is not a price set because it is still being made and i would like to have it finished and hopefully reviewed and rated by members before setting a price.

Also why be hostile right away?

I use DeepL for translations so i hope asking why your being hostile isn't a translation error.