- Автор темы
- Добавить закладку
- #101
(+) V5 (WIP)
- hidden apps > run cmd.exe hidden from the user with full interactivity
- hidden apps > run cmd.exe hidden from the user with full interactivity
-
XSS.stack #1 – первый литературный журнал от юзеров форума
Spectre 5.0 RAT | Botnet | HiddenBrowser
- Автор темы DigitalMutant
- Дата начала
Is the hidden browser still in beta? How reliable is it? For instance, what percentage of the bots can launch it successfully?
want buy spectre, message me your contact to pm please
Hey DigitalMutant, I messaged you regarding sale of product
- Автор темы
- Добавить закладку
- #105
hello, i've been refining it on v5, but hard to say the percentage, at any rate it still needs some work.
thanks
- Автор темы
- Добавить закладку
- #106
replied thanks
- Автор темы
- Добавить закладку
- #107
replied thanks
Thanks. Have you considered adding a back connect/socks5 proxy feature? I think that could be an easier implementation.
- Автор темы
- Добавить закладку
- #109
hello, well these are different features, a back connect/socks5 proxy will route traffic through the pc, the idea of the hidden browser is to use the browsers with the users full profile (sessions, pwds, cookies, etc)
Я заинтересован купить. Отправить вам мой контакт. Пожалуйста, проверьте свой почтовый ящик.
would like to purchase, sent pm with contact
- Автор темы
- Добавить закладку
- #112
thank you
- Автор темы
- Добавить закладку
- #113
hello, thanks. i'm finishing up the v5, will be posting news shortly
does the recovery works ok with office 365?
I would like to buy, please send your contact
- Автор темы
- Добавить закладку
- #116
hello, you mean Outlook app? if so no. regards
- Автор темы
- Добавить закладку
- #117
hello, almost done, posting news tomorrow probably, thanks
Send me your jabber.
- Автор темы
- Добавить закладку
- #119
hello, posting new version info.
- Автор темы
- Добавить закладку
- #120
Spectre 5.0 RAT | Botnet | HiddenBrowser
GENERAL
* C++ Windows RAT (bot)
* php/ajax c2 server (web panel)
* not based on another malware
RAT/BOT
(+) upload + download + execute (exe / bat / vbs)
(+) files explorer
# navigate + create new folders
# download files
# upload + delete + rename (files+folders)
# search
# detects installed drives (c:\, d:\, e:\, etc)
(+) harvest / find files
* find
* by filename / extension / filename+extension
* folders: predefined / custom
* optional "max file size" value (avoid uploading huge files)
* upload files from search results
* harvest
* zip found files and upload the package
(+) pass recovery
* chrome / firefox / edge / opera / filezilla / thunderbird
(+) browsers data
* firefox autofill+history+cookies
* chrome/edge/opera autofill+credit cards+history+cookies
(+) clipboard stealer
* live mode + download/delete data
* saves the active window (program)
(+) crypto clipper/swapper
* replaces bitcoin/ethereum/monero addresses with yours
(+) keylogger
* offline mode
* 3 predefined intervals to send the logs
* saves the active window (program)
(+) live keylogger + titles filter
* send keys only if a certain app/title is focused
(+) update
"new version" mode
* update to new bot+panel (with new features)
"refud/update" mode
* replace the current running binary for the refuded/patched one
(!) this feature will not crypt your binary. only does the update/deploy
(+) screenshot
(+) screenshot burst
* take multiple screenshots when a window is focused and matches the titles/strings specified
* configure 3/5/10 screenshots burst
(+) kill bot
(+) multiple c2 servers list
* built with 5 C2 servers' urls. 1 main + 4 backups.
* if the main server gets banned/blocked the bot will check the next server until it finds one online. you dont lose your bots. they will migrate to another server.
(+) single/group/mass commands
* set a command for a single bot, for a group or for all (mass)
(+) multiple commands for each bot (commands queue)
* if the target is offline commands will be executed when online
* showing pending commands
(+) pc info
* installed programs + hardware info
(+) anti-analysis
* if analysis tools are running the bot exits
* unique mutex for each build
* binary strings obfuscated
(+) hidden browser (beta / experimental)
* use the target's browser hidden from the user (firefox/chrome/edge)
* browser default user profile is used. access the sessions, passwords saved, bookmarks, history, etc.
* connection is http (not super fast)
(+) processes list+kill
(+) shell/cmd
* run cmds and get the output (single mode)
* run cmds as "oneliners" without output (mass/group mode)
* note: not a fully interactive reverse shell
(+) persistence
(+) startup shortcut
other
(+) Unicode support (works on all languages)
(+) chromium decryption serverside
(+) strings encryption randomized for each sample
(+) features can be removed from the bin by request if not needed (main ones like keylogger, clipboard, etc).
(+) custom features can be added for an extra fee
C2 WEB PANEL
* list targets + set commands
* first boot (auto-tasks). config the modules for the first time execution
* targets' log (activity/commands executed)
* dark/light theme
* secure login with user/password and "2fa" code
* country info+flag
* save aliases (friendly bot names)
* cancel commands
* delete bot
* download all files as zip
* resources tab > easy management of the files to be dropped on targets (upload/delete/rename)
(+) === NEW ===
# (new) persistence > scheduled task (admin user or elevated)
# (new) execute 2nd stage bin at first boot
# (new) panel > filter uploaded files by current selected target and file types (imgs, dumps, etc)
# (new) panel > bots list showing last connection, boot counts, alive time, campaign/bot id, screenshots count
# (new) panel > screenshots > thumbnails (gallery)
# (new) panel > show hide columns os/campaign id/last connection
# (new) ping/knock custom randomized interval
# (new) run cmds (shell) onliners at first boot
# (new) strings dynamic decryption
# (new) randomized internal strings (bot+panel)
# (new) campaign/bot id option
# (new) cookies in json+netscape format
# (new) self delete binary (after killing)
# (new) hidden apps > run cmd.exe hidden from the user
PANEL SCREENSHOTS (preview)
PANEL SCREENSHOTS (full)
PASS K4JRU5F8D6F3H5
PROS
+ secure. the panel runs from a hosting/vps. not on your computer
+ secure. login using tor browser (javascript full turned on)
+ no setup. avoid vpns with port forwarding or tunneling. you get ready access to the panel
+ get files all the time. no need to have your pc turned on all day (avoid crashes, internet/vpn disconnections, etc)
+ multiple features coming on future versions
CRYPTING
(*) not "fud". needs crypting/protecting for antivirus evasion
(*) a crypter with "native" support should be used (for a c++ app)
CAVEATS / NOTES
(*) c2 panel needs javascript full turned on
(*) exe size is ~450kb
(*) tested on Windows 7/8.1/10/11
ASSETS YOU WILL RECEIVE
* binary (exe)
* access to the c2 panel
* readme
PRICING
* 1 MONTH 250 (RAT+PANEL) + 50 (HOSTING+DOMAIN+SETUP) = 300 USD
(*) XMR / BTC accepted
TERMS OF SERVICE
* each client gets a unique domain+hosting service (not shared)
* your plan starts once the hosting+domain is setup and you get access to the panel. if there is a delay between the payment and the setup, you won't lose any time of using the tool
* setup time (after payment confirmation) is done within 24hs
* your panel domain will be randomly generated. it cannot be changed or chosen
* no ftp/cpanel will be provided directly to the hosting service
* refund is only done (in special cases) for the tool price only (not the hosting/domain costs)
GENERAL
* C++ Windows RAT (bot)
* php/ajax c2 server (web panel)
* not based on another malware
RAT/BOT
(+) upload + download + execute (exe / bat / vbs)
(+) files explorer
# navigate + create new folders
# download files
# upload + delete + rename (files+folders)
# search
# detects installed drives (c:\, d:\, e:\, etc)
(+) harvest / find files
* find
* by filename / extension / filename+extension
* folders: predefined / custom
* optional "max file size" value (avoid uploading huge files)
* upload files from search results
* harvest
* zip found files and upload the package
(+) pass recovery
* chrome / firefox / edge / opera / filezilla / thunderbird
(+) browsers data
* firefox autofill+history+cookies
* chrome/edge/opera autofill+credit cards+history+cookies
(+) clipboard stealer
* live mode + download/delete data
* saves the active window (program)
(+) crypto clipper/swapper
* replaces bitcoin/ethereum/monero addresses with yours
(+) keylogger
* offline mode
* 3 predefined intervals to send the logs
* saves the active window (program)
(+) live keylogger + titles filter
* send keys only if a certain app/title is focused
(+) update
"new version" mode
* update to new bot+panel (with new features)
"refud/update" mode
* replace the current running binary for the refuded/patched one
(!) this feature will not crypt your binary. only does the update/deploy
(+) screenshot
(+) screenshot burst
* take multiple screenshots when a window is focused and matches the titles/strings specified
* configure 3/5/10 screenshots burst
(+) kill bot
(+) multiple c2 servers list
* built with 5 C2 servers' urls. 1 main + 4 backups.
* if the main server gets banned/blocked the bot will check the next server until it finds one online. you dont lose your bots. they will migrate to another server.
(+) single/group/mass commands
* set a command for a single bot, for a group or for all (mass)
(+) multiple commands for each bot (commands queue)
* if the target is offline commands will be executed when online
* showing pending commands
(+) pc info
* installed programs + hardware info
(+) anti-analysis
* if analysis tools are running the bot exits
* unique mutex for each build
* binary strings obfuscated
(+) hidden browser (beta / experimental)
* use the target's browser hidden from the user (firefox/chrome/edge)
* browser default user profile is used. access the sessions, passwords saved, bookmarks, history, etc.
* connection is http (not super fast)
(+) processes list+kill
(+) shell/cmd
* run cmds and get the output (single mode)
* run cmds as "oneliners" without output (mass/group mode)
* note: not a fully interactive reverse shell
(+) persistence
(+) startup shortcut
other
(+) Unicode support (works on all languages)
(+) chromium decryption serverside
(+) strings encryption randomized for each sample
(+) features can be removed from the bin by request if not needed (main ones like keylogger, clipboard, etc).
(+) custom features can be added for an extra fee
C2 WEB PANEL
* list targets + set commands
* first boot (auto-tasks). config the modules for the first time execution
* targets' log (activity/commands executed)
* dark/light theme
* secure login with user/password and "2fa" code
* country info+flag
* save aliases (friendly bot names)
* cancel commands
* delete bot
* download all files as zip
* resources tab > easy management of the files to be dropped on targets (upload/delete/rename)
(+) === NEW ===
# (new) persistence > scheduled task (admin user or elevated)
# (new) execute 2nd stage bin at first boot
# (new) panel > filter uploaded files by current selected target and file types (imgs, dumps, etc)
# (new) panel > bots list showing last connection, boot counts, alive time, campaign/bot id, screenshots count
# (new) panel > screenshots > thumbnails (gallery)
# (new) panel > show hide columns os/campaign id/last connection
# (new) ping/knock custom randomized interval
# (new) run cmds (shell) onliners at first boot
# (new) strings dynamic decryption
# (new) randomized internal strings (bot+panel)
# (new) campaign/bot id option
# (new) cookies in json+netscape format
# (new) self delete binary (after killing)
# (new) hidden apps > run cmd.exe hidden from the user
PANEL SCREENSHOTS (preview)
PANEL SCREENSHOTS (full)
Upload files for free - PANEL_V5_SCREENSHOTS.7z - ufile.io
Download PANEL_V5_SCREENSHOTS.7z for free from ufile.io instantly, no signup required and no popup ads
ufile.io
PROS
+ secure. the panel runs from a hosting/vps. not on your computer
+ secure. login using tor browser (javascript full turned on)
+ no setup. avoid vpns with port forwarding or tunneling. you get ready access to the panel
+ get files all the time. no need to have your pc turned on all day (avoid crashes, internet/vpn disconnections, etc)
+ multiple features coming on future versions
CRYPTING
(*) not "fud". needs crypting/protecting for antivirus evasion
(*) a crypter with "native" support should be used (for a c++ app)
CAVEATS / NOTES
(*) c2 panel needs javascript full turned on
(*) exe size is ~450kb
(*) tested on Windows 7/8.1/10/11
ASSETS YOU WILL RECEIVE
* binary (exe)
* access to the c2 panel
* readme
PRICING
* 1 MONTH 250 (RAT+PANEL) + 50 (HOSTING+DOMAIN+SETUP) = 300 USD
(*) XMR / BTC accepted
TERMS OF SERVICE
* each client gets a unique domain+hosting service (not shared)
* your plan starts once the hosting+domain is setup and you get access to the panel. if there is a delay between the payment and the setup, you won't lose any time of using the tool
* setup time (after payment confirmation) is done within 24hs
* your panel domain will be randomly generated. it cannot be changed or chosen
* no ftp/cpanel will be provided directly to the hosting service
* refund is only done (in special cases) for the tool price only (not the hosting/domain costs)